Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
real estate vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2008-4570
SQL injection vulnerability in index.php in Real Estate Classifieds allows remote malicious users to execute arbitrary SQL commands via the cat parameter.
Real-estate-scripts Real-estate-scripts
1 EDB exploit
5
CVSSv2
CVE-2008-2881
Relative Real Estate Systems 3.0 and previous versions stores passwords in cleartext in a MySQL database, which allows context-dependent malicious users to obtain sensitive information.
Relative Real Estate Systems Relative Real Estate Systems
1 EDB exploit
4.3
CVSSv2
CVE-2013-5930
Cross-site scripting (XSS) vulnerability in search_residential.php in Real Estate PHP Script allows remote malicious users to inject arbitrary web script or HTML via the bos parameter.
Real-estate-php-script Real Estate Php Script -
7.5
CVSSv2
CVE-2013-5931
SQL injection vulnerability in property_listings_detail.php in Real Estate PHP Script allows remote malicious users to execute arbitrary SQL commands via the listingid parameter.
Real-estate-php-script Real Estate Php Script -
7.5
CVSSv2
CVE-2007-3160
PHP remote file inclusion vulnerability in admin/header.php in PHP Real Estate Classifieds Premium Plus allows remote malicious users to execute arbitrary PHP code via a URL in the loc parameter.
Php Real Estate Classifieds Php Real Estate Classifieds
1 EDB exploit
3.5
CVSSv2
CVE-2018-5076
Online Ticket Booking has XSS via the admin/newsedit.php newstitle parameter.
Advanced Real Estate Script Project Advanced Real Estate Script -
3.5
CVSSv2
CVE-2022-1646
The Simple Real Estate Pack WordPress plugin up to and including 1.4.8 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks when the unfiltered_html capability is disallowed
Simple Real Estate Pack Project Simple Real Estate Pack
7.5
CVSSv2
CVE-2008-6009
SG Real Estate Portal 2.0 allows remote malicious users to bypass authentication and gain administrative access by setting the Auth cookie to 1.
Sg Real Estate Portal Sg Real Estate Portal 2.0
1 EDB exploit
5
CVSSv2
CVE-2008-6010
Multiple directory traversal vulnerabilities in SG Real Estate Portal 2.0 allow remote malicious users to read arbitrary files via a .. (dot dot) in the (1) mod, (2) page, or (3) lang parameter to index.php; or the (4) action or (5) folder parameter in a security request to admin...
Sg Real Estate Portal Sg Real Estate Portal 2.0
1 EDB exploit
3.5
CVSSv2
CVE-2018-5072
Online Ticket Booking has XSS via the admin/sitesettings.php keyword parameter.
Advanced Real Estate Script Project Advanced Real Estate Script -
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »