CVE-2010-4738

Rae Media INC Real Estate <3.0 - SQL Injection

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2010-4738. PoCs published by R4dc0re.

AI-analyzed exploit summary The provided text describes an SQL injection vulnerability in Real Estate Single 3.0, where the 'probe' parameter in 'resulttype.asp' is not properly sanitized. It includes an example URI but lacks actual exploit code or payload details.

Description

Multiple SQL injection vulnerabilities in Rae Media INC Real Estate Single and Multi Agent System 3.0 allow remote attackers to execute arbitrary SQL commands via the probe parameter to (1) multi/city.asp in the Multi Agent System and (2) resulttype.asp in the Single Agent System.

Exploits (2)

exploitdb WRITEUP VERIFIED
by R4dc0re · textwebappsasp
https://www.exploit-db.com/exploits/16178

The provided text describes an SQL injection vulnerability in Real Estate Single 3.0, where the 'probe' parameter in 'resulttype.asp' is not properly sanitized. It includes an example URI but lacks actual exploit code or payload details.

Classification
Writeup 80%
Attack Type
Sqli
Complexity
Trivial
Reliability
Theoretical
Target: Real Estate Single 3.0
No auth needed
Prerequisites: Access to the vulnerable endpoint
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by R4dc0re · textwebappsasp
https://www.exploit-db.com/exploits/16179

The provided text describes an SQL injection vulnerability in Multi Agent System 3.0, where the 'probe' parameter in 'city.asp' is not properly sanitized. It includes an example URI but lacks actual exploit code or payload details.

Classification
Writeup 90%
Attack Type
Sqli
Complexity
Trivial
Reliability
Theoretical
Target: Multi Agent System 3.0
No auth needed
Prerequisites: Access to the vulnerable endpoint
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (9)

Core 9
Core References
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/45212
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/69628
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/45211
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/42515
Third Party Advisory third-party-advisory x_refsource_sreason
http://securityreason.com/securityalert/8080
Third Party Advisory third-party-advisory x_refsource_sreason
http://securityreason.com/securityalert/8082
Exploit vdb-entry x_refsource_osvdb
http://osvdb.org/69627
Third Party Advisory third-party-advisory x_refsource_sreason
http://securityreason.com/securityalert/8088

Scores

EPSS 0.0180
EPSS Percentile 75.7%

Details

CWE
CWE-89
Status published
Products (1)
raemedia/real_estate_single_and_multi_agent_system 3.0
Published Feb 16, 2011
Tracked Since Feb 18, 2026