cpe:/a:rwcinc:free_realty:3.1-0.6 CVE-2012-4279 2012-08-13T18:55:01.850-04:00 2012-08-14T00:00:00.000-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2012-08-14T15:56:00.000-04:00 EXPLOIT-DB 18874 SECUNIA 49132 BID 53491 MISC http://www.vulnerability-lab.com/get_content.php?id=513 Multiple SQL injection vulnerabilities in Free Realty 3.1-0.6 allow remote attackers to execute arbitrary SQL commands via the (1) view parameter to agentdisplay.php or (2) edit parameter to admin/admin.php.