Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
real estate vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2008-4570
SQL injection vulnerability in index.php in Real Estate Classifieds allows remote malicious users to execute arbitrary SQL commands via the cat parameter.
Real-estate-scripts Real-estate-scripts
1 EDB exploit
5
CVSSv2
CVE-2008-2881
Relative Real Estate Systems 3.0 and previous versions stores passwords in cleartext in a MySQL database, which allows context-dependent malicious users to obtain sensitive information.
Relative Real Estate Systems Relative Real Estate Systems
1 EDB exploit
4.3
CVSSv2
CVE-2013-5930
Cross-site scripting (XSS) vulnerability in search_residential.php in Real Estate PHP Script allows remote malicious users to inject arbitrary web script or HTML via the bos parameter.
Real-estate-php-script Real Estate Php Script -
7.5
CVSSv2
CVE-2013-5931
SQL injection vulnerability in property_listings_detail.php in Real Estate PHP Script allows remote malicious users to execute arbitrary SQL commands via the listingid parameter.
Real-estate-php-script Real Estate Php Script -
7.5
CVSSv2
CVE-2007-3160
PHP remote file inclusion vulnerability in admin/header.php in PHP Real Estate Classifieds Premium Plus allows remote malicious users to execute arbitrary PHP code via a URL in the loc parameter.
Php Real Estate Classifieds Php Real Estate Classifieds
1 EDB exploit
3.5
CVSSv2
CVE-2018-5072
Online Ticket Booking has XSS via the admin/sitesettings.php keyword parameter.
Advanced Real Estate Script Project Advanced Real Estate Script -
3.5
CVSSv2
CVE-2018-5075
Online Ticket Booking has XSS via the admin/snacks_edit.php snacks_name parameter.
Advanced Real Estate Script Project Advanced Real Estate Script -
3.5
CVSSv2
CVE-2018-5076
Online Ticket Booking has XSS via the admin/newsedit.php newstitle parameter.
Advanced Real Estate Script Project Advanced Real Estate Script -
3.5
CVSSv2
CVE-2018-5078
Online Ticket Booking has XSS via the admin/eventlist.php cast parameter.
Advanced Real Estate Script Project Advanced Real Estate Script -
5
CVSSv2
CVE-2008-6010
Multiple directory traversal vulnerabilities in SG Real Estate Portal 2.0 allow remote malicious users to read arbitrary files via a .. (dot dot) in the (1) mod, (2) page, or (3) lang parameter to index.php; or the (4) action or (5) folder parameter in a security request to admin...
Sg Real Estate Portal Sg Real Estate Portal 2.0
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
injection
CVE-2024-30983
CVE-2023-4235
CVE-2024-21338
privilege
encryption
CVE-2023-4232
CVE-2024-31497
CVE-2024-32341
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »