Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
real estate vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2018-6796
PHP Scripts Mall Multilanguage Real Estate MLM Script 3.0 has Stored XSS via every profile input field.
Multilanguage Real Estate Mlm Script Project Multilanguage Real Estate Mlm Script 3.0
9.8
CVSSv3
CVE-2023-5805
A vulnerability was found in SourceCodester Simple Real Estate Portal System 1.0. It has been classified as critical. Affected is an unknown function of the file view_estate.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remot...
Simple Real Estate Portal System Project Simple Real Estate Portal System 1.0
9.8
CVSSv3
CVE-2022-25399
Simple Real Estate Portal System v1.0 exists to contain a SQL injection vulnerability via the id parameter.
Simple Real Estate Portal System Project Simple Real Estate Portal System 1.0
9.8
CVSSv3
CVE-2022-28410
Simple Real Estate Portal System v1.0 exists to contain a SQL injection vulnerability via /reps/classes/Users.php?f=delete_agent.
Simple Real Estate Portal System Project Simple Real Estate Portal System 1.0
9.8
CVSSv3
CVE-2022-28411
Simple Real Estate Portal System v1.0 exists to contain a SQL injection vulnerability via /reps/admin/?page=agents/manage_agent.
Simple Real Estate Portal System Portal Simple Real Estate Portal System 1.0
NA
CVE-2008-6930
Unrestricted file upload vulnerability in PHPStore Real Estate allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a logo, then accessing it via a direct request to the file in realty/re_images/.
Phpstore Real Estate
1 EDB exploit
NA
CVE-2008-4674
SQL injection vulnerability in realestate-index.php in Conkurent Real Estate Manager 1.01 allows remote malicious users to execute arbitrary SQL commands via the cat_id parameter in browse mode.
Conkurent Real Estate Manager
1 EDB exploit
6.5
CVSSv3
CVE-2023-4239
The Real Estate Manager plugin for WordPress is vulnerable to privilege escalation in versions up to, and including, 6.7.1 due to insufficient restriction on the 'rem_save_profile_front' function. This makes it possible for authenticated attackers, with minimal permissi...
Webcodingplace Real Estate Manager
6.1
CVSSv3
CVE-2021-24387
The WP Pro Real Estate 7 WordPress theme prior to 3.1.1 did not properly sanitise the ct_community parameter in its search listing page before outputting it back in it, leading to a reflected Cross-Site Scripting which can be triggered in both unauthenticated or authenticated use...
Contempothemes Real Estate 7
5.4
CVSSv3
CVE-2022-3933
The Essential Real Estate WordPress plugin prior to 3.9.6 does not sanitize and escapes some parameters, which could allow users with a role as low as Admin to perform Cross-Site Scripting attacks.
G5theme Essential Real Estate
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-40673
CVE-2024-36674
CVE-2024-27348
unspecified
CVE-2024-24919
CVE-2024-4870
malicious code
CVE-2024-2019
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »