SQL Injection Vulnerability in Mckenzie Creations VRM 3.5: Remote Code Execution via Lid Parameter

SQL Injection Vulnerability in Mckenzie Creations VRM 3.5: Remote Code Execution via Lid Parameter

CVE-2010-5013 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

SQL injection vulnerability in listing_detail.asp in Mckenzie Creations Virtual Real Estate Manager (VRM) 3.5 allows remote attackers to execute arbitrary SQL commands via the Lid parameter.

Learn more about our Web Application Penetration Testing UK.