CVE-2007-6472

phpMyRealty 1.0.9 - SQL Injection via Search Type Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-6472. PoCs published by Koller.

AI-analyzed exploit summary This is a writeup detailing SQL injection vulnerabilities in phpMyRealty 1.0.x. It provides example exploit URLs for extracting admin and user credentials via UNION-based SQLi in search.php and findlistings.php.

Description

Multiple SQL injection vulnerabilities in phpMyRealty (PMR) 1.0.9 allow (1) remote attackers to execute arbitrary SQL commands via the type parameter to search.php and (2) remote authenticated administrators to execute arbitrary SQL commands via the listing_updated_days parameter to admin/findlistings.php. NOTE: some of these details are obtained from third party information.

Exploits (1)

exploitdb WRITEUP VERIFIED

by Koller · textwebappsphp

https://www.exploit-db.com/exploits/4750

View Code ZIP pw:eip

This is a writeup detailing SQL injection vulnerabilities in phpMyRealty 1.0.x. It provides example exploit URLs for extracting admin and user credentials via UNION-based SQLi in search.php and findlistings.php.

Classification

Writeup 90%

Attack Type

Sqli

Complexity

Trivial

Reliability

Reliable

Target: phpMyRealty 1.0.x

No auth needed

Prerequisites: Target running phpMyRealty 1.0.x with exposed search.php or findlistings.php

MITRE ATT&CK