Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-4279

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2012-4279
Last Modified 14 Aug 2012 12:00:00
Published 13 Aug 2012 06:55:01
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2012-4279

Summary

Multiple SQL injection vulnerabilities in Free Realty 3.1-0.6 allow remote attackers to execute arbitrary SQL commands via the (1) view parameter to agentdisplay.php or (2) edit parameter to admin/admin.php.

Vulnerable Systems

Application

  • Rwcinc Free Realty 3.1-0.6


References

MISC - http://www.vulnerability-lab.com/get_content.php?id=513

BID - 53491

EXPLOIT-DB - 18874

SECUNIA - 49132


Last Updated: 27 May 2016 10:51:40