SQL Injection Vulnerability in Advanced Real Estate Script 4.0.7 via search-results.php Parameters

SQL Injection Vulnerability in Advanced Real Estate Script 4.0.7 via search-results.php Parameters

CVE-2017-17603 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Advanced Real Estate Script 4.0.7 has SQL Injection via the search-results.php Projectmain, proj_type, searchtext, sell_price, or maxprice parameter.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.