Lucene search
K

118 matches found

0day.today
0day.today
added 2024/07/31 12:0 a.m.143 views

Readymade Real Estate Script SQL Injection / Cross Site Scripting Vulnerabilities

x========================================================================================================================================x | Title : Readymade Real Estate Script Blind SQL & XSS Vulnerabilities | Software : Advanced Real Estate Script | Vendor : http://www.i-netsolution.com/ | Dat...

7.4AI score
Exploits0
CNNVD
CNNVD
added 2023/07/10 12:0 a.m.3 views

GZ Scripts Property Listing Script 跨站脚本漏洞

GZ Scripts Property Listing Script is a real estate software from GZ Scripts, Inc. A cross-site scripting vulnerability exists in GZ Scripts Property Listing Script that stems from an unknown issue with /preview.php...

6.1CVSS4.6AI score0.00442EPSS
Exploits0References3
OSV
OSV
added 2022/07/16 7:15 a.m.4 views

CVE-2017-20130

A vulnerability was found in Itech Real Estate Script 3.12. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /real-estate-script/searchproperty.php. The manipulation of the argument propertyfor leads to sql injection. The attack can be...

9.8CVSS5.8AI score0.00772EPSS
Exploits1References2
NVD
NVD
added 2022/07/16 7:15 a.m.18 views

CVE-2017-20130

A vulnerability was found in Itech Real Estate Script 3.12. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /real-estate-script/searchproperty.php. The manipulation of the argument propertyfor leads to sql injection. The attack can be...

9.8CVSS0.00772EPSS
Exploits1References2
Prion
Prion
added 2022/07/16 7:15 a.m.11 views

Sql injection

A vulnerability was found in Itech Real Estate Script 3.12. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /real-estate-script/searchproperty.php. The manipulation of the argument propertyfor leads to sql injection. The attack can be...

7.5CVSS9.7AI score0.00772EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2022/07/16 6:15 a.m.7 views

CVE-2017-20130 Itech Real Estate Script search_property.php sql injection

A vulnerability was found in Itech Real Estate Script 3.12. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /real-estate-script/searchproperty.php. The manipulation of the argument propertyfor leads to sql injection. The attack can be...

6.3CVSS7.6AI score0.00772EPSS
Exploits1References2
CVE
CVE
added 2022/07/16 6:15 a.m.45 views

CVE-2017-20130

CVE-2017-20130 affects Itech Real Estate Script 3.12. The vulnerability is an SQL injection in an unknown function of the file /real-estate-script/search_property.php, triggered by manipulating the property_for argument. The flaw can be exploited remotely and has been publicly disclosed; multiple...

9.8CVSS8.3AI score0.00772EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2022/07/16 6:15 a.m.18 views

CVE-2017-20130 Itech Real Estate Script search_property.php sql injection

A vulnerability was found in Itech Real Estate Script 3.12. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /real-estate-script/searchproperty.php. The manipulation of the argument propertyfor leads to sql injection. The attack can be...

6.3CVSS9.8AI score0.00772EPSS
Exploits1References2
CNNVD
CNNVD
added 2022/07/16 12:0 a.m.3 views

Ambit Technologies iTech Real Estate Script SQL注入漏洞

Ambit Technologies iTech Real Estate Script is an intelligent PHP script by Ambit Technologies India. Properties for sale and rent can be listed using the edit option to edit property details. Ambit Technologies iTech Real Estate Script version 3.12 suffers from a SQL injection vulnerability that...

9.8CVSS8.5AI score0.00772EPSS
Exploits1References3
CNVD
CNVD
added 2020/01/07 12:0 a.m.3 views

PHP Scripts Mall advanced-real-estate-script cross-site scripting vulnerability

PHP Scripts Mall advanced-real-estate-script is a real estate website system script by PHP Scripts Mall India. A cross-site scripting vulnerability exists in the 'searchtext' parameter of the search-results.php file in PHP Scripts Mall advanced-real-estate-script version 4.0.9. The vulnerability...

6.1CVSS6.5AI score0.007EPSS
Exploits1References1
CNVD
CNVD
added 2020/01/07 12:0 a.m.2 views

PHP Scripts Mall advanced-real-estate-script SQL Injection Vulnerability

PHP Scripts Mall advanced-real-estate-script is a real estate website system script by PHP Scripts Mall India. A SQL injection vulnerability exists in the 'newsid' parameter of the newsedit.php file in PHP Scripts Mall advanced-real-estate-script version 4.0.9. The vulnerability stems from a...

7.2CVSS8.2AI score0.0104EPSS
Exploits1References1
OSV
OSV
added 2020/01/05 10:15 p.m.3 views

CVE-2019-20337

In PHP Scripts Mall advanced-real-estate-script 4.0.9, the newsedit.php newsid parameter is vulnerable to SQL Injection...

7.2CVSS5.8AI score0.0104EPSS
Exploits1References1
CVE
CVE
added 2020/01/05 9:6 p.m.80 views

CVE-2019-20337

Summary: CVE-2019-20337 affects PHP Scripts Mall advanced-real-estate-script 4.0.9. The vulnerability is in news_edit.php, where the news_id parameter is vulnerable to SQL Injection. The root cause is improper input validation/sanitization of externally provided SQL statements. Reported impact in...

7.2CVSS7.2AI score0.0104EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2018/10/04 9:29 p.m.14 views

CVE-2018-16457

PHP Scripts Mall Open Source Real-estate Script 3.6.2 allows remote attackers to list the wp-content/themes/templatedpdec2015/img directory...

5.3CVSS5.5AI score0.01519EPSS
Exploits1References1
OSV
OSV
added 2018/10/04 9:29 p.m.3 views

CVE-2018-16457

PHP Scripts Mall Open Source Real-estate Script 3.6.2 allows remote attackers to list the wp-content/themes/templatedpdec2015/img directory...

5.3CVSS5.8AI score0.01519EPSS
Exploits1References1
CVE
CVE
added 2018/10/04 9:0 p.m.35 views

CVE-2018-16457

The CVE-2018-16457 issue affects PHP Scripts Mall Open Source Real-Estate Script 3.6.2, where the web application allows remote attackers to list files in wp-content/themes/template_dp_dec2015/img. Root cause is directory listing enabled for the theme directory, enabling enumeration of its conten...

5.3CVSS5.4AI score0.01519EPSS
Exploits1References1Affected Software1
CNVD
CNVD
added 2018/08/15 12:0 a.m.3 views

PHP Scripts Mall advanced-real-estate-script cross-site scripting vulnerability

PHP Scripts Mall advanced-real-estate-script is a PHP and MySQL based real estate website system script by PHP Scripts Mall India. A cross-site scripting vulnerability exists in PHP Scripts Mall advanced-real-estate-script, which can be exploited by remote attackers to inject HTML code via the Na...

5.4CVSS5.4AI score0.00545EPSS
Exploits1References1
CNVD
CNVD
added 2018/08/14 12:0 a.m.3 views

PHP Scripts Mall advanced-real-estate-script Cross-Site Request Forgery Vulnerability

PHP Scripts Mall advanced-real-estate-script is a PHP and MySQL based real estate website system script by PHP Scripts Mall India. A cross-site request forgery vulnerability exists in PHP Scripts Mall advanced-real-estate-script version 4.0.9. A remote attacker can exploit this vulnerability to...

8CVSS7.9AI score0.00452EPSS
Exploits1References1
CNVD
CNVD
added 2018/08/14 12:0 a.m.1 views

PHP Scripts Mall advanced-real-estate-script Denial of Service Vulnerability

PHP Scripts Mall advanced-real-estate-script is a PHP and MySQL based real estate website system script by PHP Scripts Mall India. A denial of service vulnerability exists in PHP Scripts Mall advanced-real-estate-script version 4.0.9. The vulnerability can be exploited by a remote attacker to cau...

6.5CVSS6.5AI score0.00938EPSS
Exploits1References1
OSV
OSV
added 2018/08/10 3:29 p.m.4 views

CVE-2018-15189

PHP Scripts Mall advanced-real-estate-script has XSS via the Name field of a profile...

5.4CVSS5.8AI score0.00545EPSS
Exploits1References1
Rows per page
Query Builder