Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple SQL injection vulnerabilities in list.asp in Softwebs Nepal (aka Ananda Raj Pandey) Ananda Real Estate 3.4 allow remote attackers to execute arbitrary SQL commands via the (1) city, (2) state, (3) country, (4) minprice, (5) maxprice, (6) bed, and (7) bath parameters, different vectors than CVE-2006-6807.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Softwebs Nepal Ananda Real Estate 'list.asp'多个SQL注入漏洞
Vulnerability Description
Ananda Real Estate是用于创建房地产站点的软件。 Softwebs Nepal(又名Ananda Raj Pandey)Ananda Real Estate 3.4版本中的list.asp中存在多个SQL注入漏洞。远程攻击者可以借助list.asp中的多个参数执行任意SQL命令。这些参数包括:(1)city,(2)state,(3)country,(4)minprice,(5)maxprice,(6)bed,以及(7)bath参数。
CVSS Information
N/A
Vulnerability Type
N/A