CVE-2010-1874
Real Estate Property (com_properties) 3.1.22-03 - SQL Injection via aid Parameter
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2010-1874. PoCs published by c4uR.
AI-analyzed exploit summary This exploit demonstrates a SQL injection vulnerability in the Joomla component com_properties, specifically targeting the 'aid' parameter. The payload extracts user credentials and version information from the database via a UNION-based SQL injection.
Description
SQL injection vulnerability in the Real Estate Property (com_properties) component 3.1.22-03 for Joomla! allows remote attackers to execute arbitrary SQL commands via the aid parameter in an agentlisting action to index.php. NOTE: some of these details are obtained from third party information.
Exploits (1)
This exploit demonstrates a SQL injection vulnerability in the Joomla component com_properties, specifically targeting the 'aid' parameter. The payload extracts user credentials and version information from the database via a UNION-based SQL injection.