CVE-2010-1708
FreeRealty(Free Real Estate Listing Software) - Authentication Bypass
Severity Score
7.5
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
4
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Multiple SQL injection vulnerabilities in agentadmin.php in Free Realty allow remote attackers to execute arbitrary SQL commands via the (1) login field (aka agentname parameter) or (2) password field (aka agentpassword parameter).
Múltiples vulnerabilidades de inyección SQL en agentadmin.php en Free Realty permiten a atacantes remotos ejecutar sentencias SQL de su elección a través de (1) campo login (también conocido como parámetro agentname) o (2) campo password (también conocido como parámetro agentpassword).
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2010-04-27 First Exploit
- 2010-05-04 CVE Reserved
- 2010-05-04 CVE Published
- 2023-03-08 EPSS Updated
- 2024-08-07 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
CAPEC
References (5)
| URL | Tag | Source |
|---|---|---|
| https://exchange.xforce.ibmcloud.com/vulnerabilities/58193 | Vdb Entry |
| URL | Date | SRC |
|---|---|---|
| https://www.exploit-db.com/exploits/12411 | 2010-04-27 | |
| http://packetstormsecurity.org/1004-exploits/freerealty-sql.txt | 2024-08-07 | |
| http://www.exploit-db.com/exploits/12411 | 2024-08-07 | |
| http://www.securityfocus.com/bid/39712 | 2024-08-07 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Freerealty.rwcinc Search vendor "Freerealty.rwcinc" | Free Realty Search vendor "Freerealty.rwcinc" for product "Free Realty" | 2.6 Search vendor "Freerealty.rwcinc" for product "Free Realty" and version "2.6" | - |
Affected
| ||||||
| Freerealty.rwcinc Search vendor "Freerealty.rwcinc" | Free Realty Search vendor "Freerealty.rwcinc" for product "Free Realty" | 2.6.1 Search vendor "Freerealty.rwcinc" for product "Free Realty" and version "2.6.1" | - |
Affected
| ||||||
| Freerealty.rwcinc Search vendor "Freerealty.rwcinc" | Free Realty Search vendor "Freerealty.rwcinc" for product "Free Realty" | 2.6.2 Search vendor "Freerealty.rwcinc" for product "Free Realty" and version "2.6.2" | - |
Affected
| ||||||
| Freerealty.rwcinc Search vendor "Freerealty.rwcinc" | Free Realty Search vendor "Freerealty.rwcinc" for product "Free Realty" | 2.7 Search vendor "Freerealty.rwcinc" for product "Free Realty" and version "2.7" | pre1 |
Affected
| ||||||
| Freerealty.rwcinc Search vendor "Freerealty.rwcinc" | Free Realty Search vendor "Freerealty.rwcinc" for product "Free Realty" | 2.7 Search vendor "Freerealty.rwcinc" for product "Free Realty" and version "2.7" | pre2 |
Affected
| ||||||
| Freerealty.rwcinc Search vendor "Freerealty.rwcinc" | Free Realty Search vendor "Freerealty.rwcinc" for product "Free Realty" | 2.7 Search vendor "Freerealty.rwcinc" for product "Free Realty" and version "2.7" | pre3 |
Affected
| ||||||
| Freerealty.rwcinc Search vendor "Freerealty.rwcinc" | Free Realty Search vendor "Freerealty.rwcinc" for product "Free Realty" | 2.7 Search vendor "Freerealty.rwcinc" for product "Free Realty" and version "2.7" | pre4 |
Affected
| ||||||
| Freerealty.rwcinc Search vendor "Freerealty.rwcinc" | Free Realty Search vendor "Freerealty.rwcinc" for product "Free Realty" | 2.7 Search vendor "Freerealty.rwcinc" for product "Free Realty" and version "2.7" | pre5 |
Affected
| ||||||
| Freerealty.rwcinc Search vendor "Freerealty.rwcinc" | Free Realty Search vendor "Freerealty.rwcinc" for product "Free Realty" | 2.7 Search vendor "Freerealty.rwcinc" for product "Free Realty" and version "2.7" | pre6 |
Affected
| ||||||
| Freerealty.rwcinc Search vendor "Freerealty.rwcinc" | Free Realty Search vendor "Freerealty.rwcinc" for product "Free Realty" | 2.7 Search vendor "Freerealty.rwcinc" for product "Free Realty" and version "2.7" | pre7 |
Affected
| ||||||
| Freerealty.rwcinc Search vendor "Freerealty.rwcinc" | Free Realty Search vendor "Freerealty.rwcinc" for product "Free Realty" | 2.8 Search vendor "Freerealty.rwcinc" for product "Free Realty" and version "2.8" | - |
Affected
| ||||||
| Freerealty.rwcinc Search vendor "Freerealty.rwcinc" | Free Realty Search vendor "Freerealty.rwcinc" for product "Free Realty" | 2.8.2 Search vendor "Freerealty.rwcinc" for product "Free Realty" and version "2.8.2" | - |
Affected
| ||||||
| Freerealty.rwcinc Search vendor "Freerealty.rwcinc" | Free Realty Search vendor "Freerealty.rwcinc" for product "Free Realty" | 2.8.3 Search vendor "Freerealty.rwcinc" for product "Free Realty" and version "2.8.3" | - |
Affected
| ||||||
| Freerealty.rwcinc Search vendor "Freerealty.rwcinc" | Free Realty Search vendor "Freerealty.rwcinc" for product "Free Realty" | 2.8.4 Search vendor "Freerealty.rwcinc" for product "Free Realty" and version "2.8.4" | - |
Affected
| ||||||
| Freerealty.rwcinc Search vendor "Freerealty.rwcinc" | Free Realty Search vendor "Freerealty.rwcinc" for product "Free Realty" | 2.8.5 Search vendor "Freerealty.rwcinc" for product "Free Realty" and version "2.8.5" | - |
Affected
| ||||||
| Freerealty.rwcinc Search vendor "Freerealty.rwcinc" | Free Realty Search vendor "Freerealty.rwcinc" for product "Free Realty" | 2.8.6 Search vendor "Freerealty.rwcinc" for product "Free Realty" and version "2.8.6" | - |
Affected
| ||||||
| Freerealty.rwcinc Search vendor "Freerealty.rwcinc" | Free Realty Search vendor "Freerealty.rwcinc" for product "Free Realty" | 2.8.6 Search vendor "Freerealty.rwcinc" for product "Free Realty" and version "2.8.6" | pre1 |
Affected
| ||||||
| Freerealty.rwcinc Search vendor "Freerealty.rwcinc" | Free Realty Search vendor "Freerealty.rwcinc" for product "Free Realty" | 2.8.6 Search vendor "Freerealty.rwcinc" for product "Free Realty" and version "2.8.6" | pre2 |
Affected
| ||||||
| Freerealty.rwcinc Search vendor "Freerealty.rwcinc" | Free Realty Search vendor "Freerealty.rwcinc" for product "Free Realty" | 2.8.6 Search vendor "Freerealty.rwcinc" for product "Free Realty" and version "2.8.6" | pre3 |
Affected
| ||||||
| Freerealty.rwcinc Search vendor "Freerealty.rwcinc" | Free Realty Search vendor "Freerealty.rwcinc" for product "Free Realty" | 2.8.6-1 Search vendor "Freerealty.rwcinc" for product "Free Realty" and version "2.8.6-1" | - |
Affected
| ||||||
| Freerealty.rwcinc Search vendor "Freerealty.rwcinc" | Free Realty Search vendor "Freerealty.rwcinc" for product "Free Realty" | 2.9 Search vendor "Freerealty.rwcinc" for product "Free Realty" and version "2.9" | pre1 |
Affected
| ||||||
| Freerealty.rwcinc Search vendor "Freerealty.rwcinc" | Free Realty Search vendor "Freerealty.rwcinc" for product "Free Realty" | 2.9 Search vendor "Freerealty.rwcinc" for product "Free Realty" and version "2.9" | pre2 |
Affected
| ||||||
| Freerealty.rwcinc Search vendor "Freerealty.rwcinc" | Free Realty Search vendor "Freerealty.rwcinc" for product "Free Realty" | 2.9 Search vendor "Freerealty.rwcinc" for product "Free Realty" and version "2.9" | pre2.1 |
Affected
| ||||||
| Freerealty.rwcinc Search vendor "Freerealty.rwcinc" | Free Realty Search vendor "Freerealty.rwcinc" for product "Free Realty" | 2.9 Search vendor "Freerealty.rwcinc" for product "Free Realty" and version "2.9" | pre2.2 |
Affected
| ||||||
| Freerealty.rwcinc Search vendor "Freerealty.rwcinc" | Free Realty Search vendor "Freerealty.rwcinc" for product "Free Realty" | 2.9 Search vendor "Freerealty.rwcinc" for product "Free Realty" and version "2.9" | pre3.0 |
Affected
| ||||||
| Freerealty.rwcinc Search vendor "Freerealty.rwcinc" | Free Realty Search vendor "Freerealty.rwcinc" for product "Free Realty" | 2.9-0.0 Search vendor "Freerealty.rwcinc" for product "Free Realty" and version "2.9-0.0" | - |
Affected
| ||||||
| Freerealty.rwcinc Search vendor "Freerealty.rwcinc" | Free Realty Search vendor "Freerealty.rwcinc" for product "Free Realty" | 2.9-0.1 Search vendor "Freerealty.rwcinc" for product "Free Realty" and version "2.9-0.1" | - |
Affected
| ||||||
| Freerealty.rwcinc Search vendor "Freerealty.rwcinc" | Free Realty Search vendor "Freerealty.rwcinc" for product "Free Realty" | 2.9-0.2 Search vendor "Freerealty.rwcinc" for product "Free Realty" and version "2.9-0.2" | - |
Affected
| ||||||
| Freerealty.rwcinc Search vendor "Freerealty.rwcinc" | Free Realty Search vendor "Freerealty.rwcinc" for product "Free Realty" | 2.9-0.3 Search vendor "Freerealty.rwcinc" for product "Free Realty" and version "2.9-0.3" | - |
Affected
| ||||||
| Freerealty.rwcinc Search vendor "Freerealty.rwcinc" | Free Realty Search vendor "Freerealty.rwcinc" for product "Free Realty" | 2.9-0.4 Search vendor "Freerealty.rwcinc" for product "Free Realty" and version "2.9-0.4" | - |
Affected
| ||||||
| Freerealty.rwcinc Search vendor "Freerealty.rwcinc" | Free Realty Search vendor "Freerealty.rwcinc" for product "Free Realty" | 2.9-0.5 Search vendor "Freerealty.rwcinc" for product "Free Realty" and version "2.9-0.5" | - |
Affected
| ||||||
| Freerealty.rwcinc Search vendor "Freerealty.rwcinc" | Free Realty Search vendor "Freerealty.rwcinc" for product "Free Realty" | 2.9-0.7 Search vendor "Freerealty.rwcinc" for product "Free Realty" and version "2.9-0.7" | - |
Affected
| ||||||
| Freerealty.rwcinc Search vendor "Freerealty.rwcinc" | Free Realty Search vendor "Freerealty.rwcinc" for product "Free Realty" | 2.9-0.7.1 Search vendor "Freerealty.rwcinc" for product "Free Realty" and version "2.9-0.7.1" | - |
Affected
| ||||||
| Freerealty.rwcinc Search vendor "Freerealty.rwcinc" | Free Realty Search vendor "Freerealty.rwcinc" for product "Free Realty" | 2.9-0.7.2 Search vendor "Freerealty.rwcinc" for product "Free Realty" and version "2.9-0.7.2" | - |
Affected
| ||||||
| Freerealty.rwcinc Search vendor "Freerealty.rwcinc" | Free Realty Search vendor "Freerealty.rwcinc" for product "Free Realty" | 2.9-0.7.3 Search vendor "Freerealty.rwcinc" for product "Free Realty" and version "2.9-0.7.3" | - |
Affected
| ||||||
| Freerealty.rwcinc Search vendor "Freerealty.rwcinc" | Free Realty Search vendor "Freerealty.rwcinc" for product "Free Realty" | 2.9-0.7.4 Search vendor "Freerealty.rwcinc" for product "Free Realty" and version "2.9-0.7.4" | - |
Affected
| ||||||
| Freerealty.rwcinc Search vendor "Freerealty.rwcinc" | Free Realty Search vendor "Freerealty.rwcinc" for product "Free Realty" | 3.0-0 Search vendor "Freerealty.rwcinc" for product "Free Realty" and version "3.0-0" | rc1 |
Affected
| ||||||
| Freerealty.rwcinc Search vendor "Freerealty.rwcinc" | Free Realty Search vendor "Freerealty.rwcinc" for product "Free Realty" | 3.0-0 Search vendor "Freerealty.rwcinc" for product "Free Realty" and version "3.0-0" | rc2 |
Affected
| ||||||
| Freerealty.rwcinc Search vendor "Freerealty.rwcinc" | Free Realty Search vendor "Freerealty.rwcinc" for product "Free Realty" | 3.0-0 Search vendor "Freerealty.rwcinc" for product "Free Realty" and version "3.0-0" | rc3 |
Affected
| ||||||
| Freerealty.rwcinc Search vendor "Freerealty.rwcinc" | Free Realty Search vendor "Freerealty.rwcinc" for product "Free Realty" | 3.0-0 Search vendor "Freerealty.rwcinc" for product "Free Realty" and version "3.0-0" | rc4 |
Affected
| ||||||
| Freerealty.rwcinc Search vendor "Freerealty.rwcinc" | Free Realty Search vendor "Freerealty.rwcinc" for product "Free Realty" | 3.0-0 Search vendor "Freerealty.rwcinc" for product "Free Realty" and version "3.0-0" | rc5 |
Affected
| ||||||
| Freerealty.rwcinc Search vendor "Freerealty.rwcinc" | Free Realty Search vendor "Freerealty.rwcinc" for product "Free Realty" | 3.0-0 Search vendor "Freerealty.rwcinc" for product "Free Realty" and version "3.0-0" | rc6 |
Affected
| ||||||
| Freerealty.rwcinc Search vendor "Freerealty.rwcinc" | Free Realty Search vendor "Freerealty.rwcinc" for product "Free Realty" | 3.0-0 Search vendor "Freerealty.rwcinc" for product "Free Realty" and version "3.0-0" | rc7 |
Affected
| ||||||