CVE-2006-3148
Severity:
Pending analysis
Type:
Unavailable / Other
Publication date:
22/06/2006
Last modified:
20/07/2017
Description
SQL injection vulnerability, possibly in search.inc.php, in Open-Realty 2.3.1 allows remote attackers to execute arbitrary SQL commands via the sorttype parameter to index.php.
Impact
Base Score 2.0
7.50
Severity 2.0
HIGH
Vulnerable products and versions
CPE | From | Up to |
---|---|---|
cpe:2.3:a:open-realty:open-realty:2.3.1:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page