CVE-2008-3682

SQL injection vulnerability in dpage.php in YPN PHP Realty allows remote attackers to execute arbitrary SQL commands via the docID parameter.

Date published : 2008-08-14

http://www.securityfocus.com/bid/30678

http://packetstorm.linuxsecurity.com/0808-exploits/phprealty-sql.txt