Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
real estate vulnerabilities and exploits
(subscribe to this query)
534
VMScore
CVE-2018-5073
Online Ticket Booking has CSRF via admin/movieedit.php.
Advanced Real Estate Script Project Advanced Real Estate Script -
312
VMScore
CVE-2018-5074
Online Ticket Booking has XSS via the admin/manageownerlist.php contact parameter.
Advanced Real Estate Script Project Advanced Real Estate Script -
312
VMScore
CVE-2018-5077
Online Ticket Booking has XSS via the admin/movieedit.php moviename parameter.
Advanced Real Estate Script Project Advanced Real Estate Script -
312
VMScore
CVE-2018-5078
Online Ticket Booking has XSS via the admin/eventlist.php cast parameter.
Advanced Real Estate Script Project Advanced Real Estate Script -
312
VMScore
CVE-2022-1646
The Simple Real Estate Pack WordPress plugin up to and including 1.4.8 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks when the unfiltered_html capability is disallowed
Simple Real Estate Pack Project Simple Real Estate Pack
755
VMScore
CVE-2008-6009
SG Real Estate Portal 2.0 allows remote malicious users to bypass authentication and gain administrative access by setting the Auth cookie to 1.
Sg Real Estate Portal Sg Real Estate Portal 2.0
1 EDB exploit
760
VMScore
CVE-2008-6011
SQL injection vulnerability in index.php in SG Real Estate Portal 2.0 allows remote malicious users to execute arbitrary SQL commands via the page_id parameter.
Sg Real Estate Portal Sg Real Estate Portal 2.0
2 EDB exploits
755
VMScore
CVE-2007-6462
SQL injection vulnerability in fullnews.php in PHP Real Estate Classifieds allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Php Real Estate Classifieds Php Real Estate Classifieds Premium Plus
1 EDB exploit
490
VMScore
CVE-2018-15188
PHP Scripts Mall advanced-real-estate-script 4.0.9 allows remote malicious users to cause a denial of service (page structure loss) via crafted JavaScript code in the Name field of a profile.
Advanced Real Estate Script Project Advanced Real Estate Script 4.0.9
312
VMScore
CVE-2018-15189
PHP Scripts Mall advanced-real-estate-script has XSS via the Name field of a profile.
Advanced Real Estate Script Project Advanced Real Estate Script 4.0.9
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
firmware
CVE-2023-52866
CVE-2024-4367
CVE-2024-1721
CVE-2023-34992
XML injection
CVE-2023-52817
SQL
CVE-2023-52855
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »