Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
real estate vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-4570
SQL injection vulnerability in index.php in Real Estate Classifieds allows remote malicious users to execute arbitrary SQL commands via the cat parameter.
Real-estate-scripts Real-estate-scripts
1 EDB exploit
NA
CVE-2007-3160
PHP remote file inclusion vulnerability in admin/header.php in PHP Real Estate Classifieds Premium Plus allows remote malicious users to execute arbitrary PHP code via a URL in the loc parameter.
Php Real Estate Classifieds Php Real Estate Classifieds
1 EDB exploit
NA
CVE-2008-2881
Relative Real Estate Systems 3.0 and previous versions stores passwords in cleartext in a MySQL database, which allows context-dependent malicious users to obtain sensitive information.
Relative Real Estate Systems Relative Real Estate Systems
1 EDB exploit
NA
CVE-2013-5930
Cross-site scripting (XSS) vulnerability in search_residential.php in Real Estate PHP Script allows remote malicious users to inject arbitrary web script or HTML via the bos parameter.
Real-estate-php-script Real Estate Php Script -
NA
CVE-2013-5931
SQL injection vulnerability in property_listings_detail.php in Real Estate PHP Script allows remote malicious users to execute arbitrary SQL commands via the listingid parameter.
Real-estate-php-script Real Estate Php Script -
4.8
CVSSv3
CVE-2022-1646
The Simple Real Estate Pack WordPress plugin up to and including 1.4.8 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks when the unfiltered_html capability is disallowed
Simple Real Estate Pack Project Simple Real Estate Pack
NA
CVE-2008-6009
SG Real Estate Portal 2.0 allows remote malicious users to bypass authentication and gain administrative access by setting the Auth cookie to 1.
Sg Real Estate Portal Sg Real Estate Portal 2.0
1 EDB exploit
NA
CVE-2008-6010
Multiple directory traversal vulnerabilities in SG Real Estate Portal 2.0 allow remote malicious users to read arbitrary files via a .. (dot dot) in the (1) mod, (2) page, or (3) lang parameter to index.php; or the (4) action or (5) folder parameter in a security request to admin...
Sg Real Estate Portal Sg Real Estate Portal 2.0
1 EDB exploit
4.8
CVSSv3
CVE-2018-5072
Online Ticket Booking has XSS via the admin/sitesettings.php keyword parameter.
Advanced Real Estate Script Project Advanced Real Estate Script -
6.8
CVSSv3
CVE-2018-5073
Online Ticket Booking has CSRF via admin/movieedit.php.
Advanced Real Estate Script Project Advanced Real Estate Script -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-26978
CVE-2024-26982
wireless
CVE-2023-6949
CVE-2024-26980
CVE-2024-32766
CVE-2024-26939
cache poisoning
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »