VYPR
Unrated severityNVD Advisory· Published Oct 4, 2012· Updated Jun 16, 2026

CVE-2012-5290

CVE-2012-5290

Description

Multiple SQL injection vulnerabilities in EasyWebRealEstate allow remote attackers to execute arbitrary SQL commands via the (1) lstid parameter to listings.php or (2) infoid parameter to index.php.

Affected products

1

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.