SQL injection vulnerability, possibly in search.inc.php, in Open-Realty 2.3.1 allows remote malicious users to execute arbitrary SQL commands via the sorttype parameter to index.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
open-realty open-realty 2.3.1 |