Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
real estate vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2022-28029
Simple Real Estate Portal System v1.0 exists to contain a SQL injection vulnerability via /reps/classes/Master.php?f=delete_type.
Simple Real Estate Portal System Project Simple Real Estate Portal System 1.0
7.5
CVSSv2
CVE-2022-28030
Simple Real Estate Portal System v1.0 exists to contain a SQL injection vulnerability via /reps/classes/Master.php?f=delete_estate.
Simple Real Estate Portal System Project Simple Real Estate Portal System 1.0
7.5
CVSSv2
CVE-2022-28410
Simple Real Estate Portal System v1.0 exists to contain a SQL injection vulnerability via /reps/classes/Users.php?f=delete_agent.
Simple Real Estate Portal System Project Simple Real Estate Portal System 1.0
7.5
CVSSv2
CVE-2022-28411
Simple Real Estate Portal System v1.0 exists to contain a SQL injection vulnerability via /reps/admin/?page=agents/manage_agent.
Simple Real Estate Portal System Portal Simple Real Estate Portal System 1.0
7.5
CVSSv2
CVE-2022-28028
Simple Real Estate Portal System v1.0 exists to contain a SQL injection vulnerability via /reps/classes/Master.php?f=delete_amenity.
Simple Real Estate Portal System Project Simple Real Estate Portal System 1.0
6.5
CVSSv2
CVE-2008-6930
Unrestricted file upload vulnerability in PHPStore Real Estate allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a logo, then accessing it via a direct request to the file in realty/re_images/.
Phpstore Real Estate
1 EDB exploit
NA
CVE-2023-4239
The Real Estate Manager plugin for WordPress is vulnerable to privilege escalation in versions up to, and including, 6.7.1 due to insufficient restriction on the 'rem_save_profile_front' function. This makes it possible for authenticated attackers, with minimal permissi...
Webcodingplace Real Estate Manager
7.5
CVSSv2
CVE-2008-0771
Multiple SQL injection vulnerabilities in default.asp in Site2Nite allow remote malicious users to execute arbitrary SQL commands via the (1) txtUserName and (2) txtPassword parameters. NOTE: some of these details are obtained from third party information.
Site2nite Real Estate Web
NA
CVE-2022-47146
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Contempoinc Real Estate 7 WordPress theme <= 3.3.1 versions.
Contempothemes Real Estate 7
NA
CVE-2023-6139
The Essential Real Estate WordPress plugin prior to 4.4.0 does not apply proper capability checks on its AJAX actions, which among other things, allow attackers with a subscriber account to conduct Denial of Service attacks.
G5plus Essential Real Estate
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »