cve/2017/CVE-2017-17603.md

CVE-2017-17603

Description

Advanced Real Estate Script 4.0.7 has SQL Injection via the search-results.php Projectmain, proj_type, searchtext, sell_price, or maxprice parameter.

POC

Reference

• https://packetstormsecurity.com/files/145345/Advanced-Real-Estate-Script-4.0.7-SQL-Injection.html
• https://www.exploit-db.com/exploits/43304/

Github

No PoCs found on GitHub currently.