CVE-2013-5931 Information

Description

SQL injection vulnerability in property_listings_detail.php in Real Estate PHP Script allows remote attackers to execute arbitrary SQL commands via the listingid parameter.

Reference

http://packetstormsecurity.com/files/123138/realestatephpscript-xss.txt