← Volver a CVEs

CVE-2005-4018

N/A

Descripcion

SQL injection vulnerability in ls.php in Landshop Real Estate Commerce System 0.6.3 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) start, (2) search_order, (3) search_type, (4) search_area, and (5) keyword parameters.

Detalles CVE

Puntuacion CVSS v3.1N/A

Publicado12/5/2005

Ultima modificacion4/16/2026

Fuentenvd

Avistamientos honeypot0

Productos afectados

landshop:real_estate_commerce_system

Referencias

http://pridels0.blogspot.com/2005/12/landshop-real-estate-commerce-system.html(cve@mitre.org)

http://secunia.com/advisories/17843(cve@mitre.org)

http://www.osvdb.org/21433(cve@mitre.org)

http://www.securityfocus.com/bid/15709(cve@mitre.org)

http://www.vupen.com/english/advisories/2005/2724(cve@mitre.org)

http://pridels0.blogspot.com/2005/12/landshop-real-estate-commerce-system.html(af854a3a-2127-422b-91ae-364da2661108)

http://secunia.com/advisories/17843(af854a3a-2127-422b-91ae-364da2661108)

http://www.osvdb.org/21433(af854a3a-2127-422b-91ae-364da2661108)

http://www.securityfocus.com/bid/15709(af854a3a-2127-422b-91ae-364da2661108)

http://www.vupen.com/english/advisories/2005/2724(af854a3a-2127-422b-91ae-364da2661108)

Correlaciones IOC

Sin correlaciones registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.