CVE-2007-4111

2007-07-3110:00:00

mitre

www.cve.org

8.3 High

AI Score

Confidence

Low

0.01 Low

EPSS

Percentile

84.1%

JSON

SQL injection vulnerability in the login script in Real Estate listing website application template, when logging in as user or manager, allows remote attackers to execute arbitrary SQL commands via the Password parameter.

References

outlaw.aria-security.info/?p=10

secunia.com/advisories/26268

securityreason.com/securityalert/2949

www.securityfocus.com/archive/1/474934/100/0/threaded

www.securityfocus.com/bid/25115

exchange.xforce.ibmcloud.com/vulnerabilities/35667