cpe:/a:preprojects:pre_real_estate_listings CVE-2008-4177 2008-09-23T11:25:42.780-04:00 2017-09-28T21:32:02.367-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2008-09-23T16:16:00.000-04:00 ALLOWS_OTHER_ACCESS BID 31192 SREASON 4310 EXPLOIT-DB 6465 XF realestatewebsite-search-sql-injection(45151) SQL injection vulnerability in search.php in Pre Real Estate Listings allows remote attackers to execute arbitrary SQL commands via the c parameter.