CVE-2008-6011

SG Real Estate Portal 2.0 - SQL Injection

Title source: llm

Description

SQL injection vulnerability in index.php in SG Real Estate Portal 2.0 allows remote attackers to execute arbitrary SQL commands via the page_id parameter.

Exploits (2)

exploitdb WORKING POC VERIFIED
by Stack · phpwebappsphp
https://www.exploit-db.com/exploits/6634
exploitdb WORKING POC VERIFIED
by SirGod · textwebappsphp
https://www.exploit-db.com/exploits/6631

References (4)

Scores

EPSS 0.0043
EPSS Percentile 61.8%

Classification

CWE
CWE-89
Status draft

Affected Products (1)

sg_real_estate_portal/sg_real_estate_portal

Timeline

Published Jan 30, 2009
Tracked Since Feb 18, 2026