CVE-2005-4019

Relative Real Estate Systems <1.02 - SQL Injection

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2005-4019. PoCs published by r0t3d3Vil.

AI-analyzed exploit summary The provided text describes an SQL injection vulnerability in Relative Real Estate Systems, where the 'mls' parameter in 'index.php' is not properly sanitized. Attackers can manipulate SQL queries via the URL, potentially leading to unauthorized data access or manipulation.

Description

SQL injection vulnerability in index.php in Relative Real Estate Systems 1.02 and earlier allows remote attackers to execute arbitrary SQL commands via the mls parameter.

Exploits (1)

exploitdb WRITEUP VERIFIED
by r0t3d3Vil · textwebappsphp
https://www.exploit-db.com/exploits/26723

The provided text describes an SQL injection vulnerability in Relative Real Estate Systems, where the 'mls' parameter in 'index.php' is not properly sanitized. Attackers can manipulate SQL queries via the URL, potentially leading to unauthorized data access or manipulation.

Classification
Writeup 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Theoretical
Target: Relative Real Estate Systems (version unspecified)
No auth needed
Prerequisites: Access to the vulnerable web application
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (6)

Core 6
Core References
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/17846
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/23435
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2005/2723
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/21432
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/15714

Scores

EPSS 0.0123
EPSS Percentile 65.0%

Details

Status published
Published Dec 05, 2005
Tracked Since Feb 18, 2026