Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
real estate vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2019-20336
In PHP Scripts Mall advanced-real-estate-script 4.0.9, the search-results.php searchtext parameter is vulnerable to XSS.
Advanced Real Estate Script Project Advanced Real Estate Script 4.0.9
1 Github repository
7.5
CVSSv2
CVE-2017-17603
Advanced Real Estate Script 4.0.7 has SQL Injection via the search-results.php Projectmain, proj_type, searchtext, sell_price, or maxprice parameter.
Advanced Real Estate Script Project Advanced Real Estate Script 4.0.7
1 EDB exploit
6.5
CVSSv2
CVE-2019-20337
In PHP Scripts Mall advanced-real-estate-script 4.0.9, the news_edit.php news_id parameter is vulnerable to SQL Injection.
Advanced Real Estate Script Project Advanced Real Estate Script 4.0.9
1 Github repository
7.5
CVSSv2
CVE-2007-6462
SQL injection vulnerability in fullnews.php in PHP Real Estate Classifieds allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Php Real Estate Classifieds Php Real Estate Classifieds Premium Plus
1 EDB exploit
5.5
CVSSv2
CVE-2018-15188
PHP Scripts Mall advanced-real-estate-script 4.0.9 allows remote malicious users to cause a denial of service (page structure loss) via crafted JavaScript code in the Name field of a profile.
Advanced Real Estate Script Project Advanced Real Estate Script 4.0.9
7.5
CVSSv2
CVE-2018-6364
SQL Injection exists in Multilanguage Real Estate MLM Script up to and including 3.0 via the /product-list.php srch parameter.
Multilanguage Real Estate Mlm Script Project Multilanguage Real Estate Mlm Script
1 EDB exploit
7.5
CVSSv2
CVE-2022-28028
Simple Real Estate Portal System v1.0 exists to contain a SQL injection vulnerability via /reps/classes/Master.php?f=delete_amenity.
Simple Real Estate Portal System Project Simple Real Estate Portal System 1.0
5
CVSSv2
CVE-2018-16457
PHP Scripts Mall Open Source Real-estate Script 3.6.2 allows remote malicious users to list the wp-content/themes/template_dp_dec2015/img directory.
Open Source Real-estate Script Project Open Source Real-estate Script 3.6.2
7.5
CVSSv2
CVE-2022-28029
Simple Real Estate Portal System v1.0 exists to contain a SQL injection vulnerability via /reps/classes/Master.php?f=delete_type.
Simple Real Estate Portal System Project Simple Real Estate Portal System 1.0
7.5
CVSSv2
CVE-2022-28030
Simple Real Estate Portal System v1.0 exists to contain a SQL injection vulnerability via /reps/classes/Master.php?f=delete_estate.
Simple Real Estate Portal System Project Simple Real Estate Portal System 1.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
CVE-2023-52162
CVE-2024-23670
CVE-2024-5404
man-in-the-middle
CVE-2024-5214
CVE-2024-4358
CVE-2024-20696
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »