Unrated severityNVD Advisory· Published Jul 31, 2007· Updated Apr 23, 2026

CVE-2007-4111

Description

SQL injection vulnerability in the login script in Real Estate listing website application template, when logging in as user or manager, allows remote attackers to execute arbitrary SQL commands via the Password parameter.

Affected products

Codewidgets/Real Estate Listing Website Application Template
cpe:2.3:a:codewidgets:real_estate_listing_website_application_template:*:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/26268nvdVendor Advisory
outlaw.aria-security.infonvd
securityreason.com/securityalert/2949nvd
www.securityfocus.com/archive/1/474934/100/0/threadednvd
www.securityfocus.com/bid/25115nvd
exchange.xforce.ibmcloud.com/vulnerabilities/35667nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000