Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
real estate vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2008-3123
SQL injection vulnerability in index.php in Mole Group Real Estate Script 1.1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the listing_id parameter in a listings action.
Mole Group Real Estate Script
1 EDB exploit
7.5
CVSSv2
CVE-2008-6796
SQL injection vulnerability in manager/login.php in Pre Projects Pre Real Estate Listings allows remote malicious users to execute arbitrary SQL commands via the username1 parameter (aka the Admin field or Username field).
Preprojects Pre Real Estate Listings
1 EDB exploit
7.5
CVSSv2
CVE-2008-6798
Multiple SQL injection vulnerabilities in login.php in Pre Projects Pre Real Estate Listings allow remote malicious users to execute arbitrary SQL commands via (1) the us parameter (aka the Username field) or (2) the ps parameter (aka the Password field).
Preprojects Pre Real Estate Listings
1 EDB exploit
5
CVSSv2
CVE-2008-6818
Mole Group Real Estate Script 1.1 and previous versions stores passwords in cleartext, which allows context-dependent malicious users to obtain sensitive information. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
Mole-group Real Estate Script
7.5
CVSSv2
CVE-2010-4782
Multiple SQL injection vulnerabilities in list.asp in Softwebs Nepal (aka Ananda Raj Pandey) Ananda Real Estate 3.4 allow remote malicious users to execute arbitrary SQL commands via the (1) city, (2) state, (3) country, (4) minprice, (5) maxprice, (6) bed, and (7) bath parameter...
Softwebsnepal Ananda Real Estate 3.4
2 EDB exploits
7.5
CVSSv2
CVE-2008-4497
SQL injection vulnerability in event_detail.php in Built2Go Real Estate Listings 1.5 allows remote malicious users to execute arbitrary SQL commands via the event_id parameter.
Built2go Real Estate Listings 1.5
1 EDB exploit
7.5
CVSSv2
CVE-2007-0196
SQL injection vulnerability in admin_check_user.asp in Motionborg Web Real Estate 2.1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the username field (txtUserName parameter) and possibly other parameters. NOTE: some details were obtain...
Motionborg Motionborg Web Real Estate
1 EDB exploit
6.8
CVSSv2
CVE-2010-3606
Multiple directory traversal vulnerabilities in AGENTS/index.php in NetArt MEDIA Real Estate Portal 2.0 allow remote emote malicious users to include and execute arbitrary local files via directory traversal sequences in the (1) folder and (2) action parameters.
Netartmedia Real Estate Portal 2.0
4.3
CVSSv2
CVE-2010-3607
Cross-site scripting (XSS) vulnerability in AGENTS/index.php in NetArt MEDIA Real Estate Portal 2.0 allows remote authenticated users to inject arbitrary web script or HTML via the id parameter.
Netartmedia Real Estate Portal 2.0
7.5
CVSSv2
CVE-2006-6807
SQL injection vulnerability in list.asp in Softwebs Nepal (aka Ananda Raj Pandey) Ananda Real Estate 3.4 and previous versions allows remote malicious users to execute arbitrary SQL commands via the agent parameter.
Softwebs Nepal Ananda Real Estate
2 EDB exploits
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »