📦

estateagent

Vendor: bits-dont-bite

Actively Exploited 0 CISA KEV List

PoC / Exploits 2 Code Available

Total RCEs 0 Remote Access

Total CVEs 1 Total Indexed

Avg. EPSS 0.73% Exploit Prob.

Latest CVE CVE-2008-0517 Jan 31

Security Vulnerability Index

Page 1 / 1

7.5 CVSS

CVE-2008-0517

Exploit Found

SQL injection vulnerability in index.php in the Darko Selesi EstateAgent (com_estateagent) 0.1 component for Mambo 4.5.x and Joomla! allows remote attackers to execute arbitrary SQL commands via the objid parameter in a contact showObject action.

EPSS: 0.02%

Severity: HIGH

Jan 31, 2008

7.5 CVSS

CVE-2006-4322

Exploit Found

PHP remote file inclusion vulnerability in estateagent.php in the EstateAgent component (com_estateagent) for Mambo, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.

EPSS: 1.45%

Severity: HIGH

Aug 24, 2006

Displaying 2 of 1 Total Entries

Total 1 Sections