Show filters
4 Total Results
Displaying 1-4 of 4
Sort by:
Attacker Value
Unknown
CVE-2008-7052
Disclosure Date: August 24, 2009 (last updated October 04, 2023)
Unrestricted file upload vulnerability in profile.php in Pre Projects Pre Real Estate Listings allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a profile logo, then accessing it via a direct request to the file in re_images/.
0
Attacker Value
Unknown
CVE-2008-6798
Disclosure Date: May 07, 2009 (last updated October 04, 2023)
Multiple SQL injection vulnerabilities in login.php in Pre Projects Pre Real Estate Listings allow remote attackers to execute arbitrary SQL commands via (1) the us parameter (aka the Username field) or (2) the ps parameter (aka the Password field).
0
Attacker Value
Unknown
CVE-2008-6796
Disclosure Date: May 07, 2009 (last updated October 04, 2023)
SQL injection vulnerability in manager/login.php in Pre Projects Pre Real Estate Listings allows remote attackers to execute arbitrary SQL commands via the username1 parameter (aka the Admin field or Username field).
0
Attacker Value
Unknown
CVE-2008-4177
Disclosure Date: September 23, 2008 (last updated October 04, 2023)
SQL injection vulnerability in search.php in Pre Real Estate Listings allows remote attackers to execute arbitrary SQL commands via the c parameter.
0