SQL injection vulnerability in list.asp in Softwebs Nepal (aka Ananda Raj Pandey) Ananda Real Estate 3.4 and earlier allows remote attackers to execute arbitrary SQL commands via the agent parameter.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Ananda_real_estate | Softwebs_nepal | * | 3.4 (including) |