118 matches found
Readymade Real Estate Script SQL Injection / Cross Site Scripting Vulnerabilities
x========================================================================================================================================x | Title : Readymade Real Estate Script Blind SQL & XSS Vulnerabilities | Software : Advanced Real Estate Script | Vendor : http://www.i-netsolution.com/ | Dat...
GZ Scripts Property Listing Script 跨站脚本漏洞
GZ Scripts Property Listing Script is a real estate software from GZ Scripts, Inc. A cross-site scripting vulnerability exists in GZ Scripts Property Listing Script that stems from an unknown issue with /preview.php...
CVE-2017-20130
A vulnerability was found in Itech Real Estate Script 3.12. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /real-estate-script/searchproperty.php. The manipulation of the argument propertyfor leads to sql injection. The attack can be...
CVE-2017-20130
A vulnerability was found in Itech Real Estate Script 3.12. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /real-estate-script/searchproperty.php. The manipulation of the argument propertyfor leads to sql injection. The attack can be...
Sql injection
A vulnerability was found in Itech Real Estate Script 3.12. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /real-estate-script/searchproperty.php. The manipulation of the argument propertyfor leads to sql injection. The attack can be...
CVE-2017-20130 Itech Real Estate Script search_property.php sql injection
A vulnerability was found in Itech Real Estate Script 3.12. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /real-estate-script/searchproperty.php. The manipulation of the argument propertyfor leads to sql injection. The attack can be...
CVE-2017-20130
CVE-2017-20130 affects Itech Real Estate Script 3.12. The vulnerability is an SQL injection in an unknown function of the file /real-estate-script/search_property.php, triggered by manipulating the property_for argument. The flaw can be exploited remotely and has been publicly disclosed; multiple...
CVE-2017-20130 Itech Real Estate Script search_property.php sql injection
A vulnerability was found in Itech Real Estate Script 3.12. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /real-estate-script/searchproperty.php. The manipulation of the argument propertyfor leads to sql injection. The attack can be...
Ambit Technologies iTech Real Estate Script SQL注入漏洞
Ambit Technologies iTech Real Estate Script is an intelligent PHP script by Ambit Technologies India. Properties for sale and rent can be listed using the edit option to edit property details. Ambit Technologies iTech Real Estate Script version 3.12 suffers from a SQL injection vulnerability that...
PHP Scripts Mall advanced-real-estate-script cross-site scripting vulnerability
PHP Scripts Mall advanced-real-estate-script is a real estate website system script by PHP Scripts Mall India. A cross-site scripting vulnerability exists in the 'searchtext' parameter of the search-results.php file in PHP Scripts Mall advanced-real-estate-script version 4.0.9. The vulnerability...
PHP Scripts Mall advanced-real-estate-script SQL Injection Vulnerability
PHP Scripts Mall advanced-real-estate-script is a real estate website system script by PHP Scripts Mall India. A SQL injection vulnerability exists in the 'newsid' parameter of the newsedit.php file in PHP Scripts Mall advanced-real-estate-script version 4.0.9. The vulnerability stems from a...
CVE-2019-20337
In PHP Scripts Mall advanced-real-estate-script 4.0.9, the newsedit.php newsid parameter is vulnerable to SQL Injection...
CVE-2019-20337
Summary: CVE-2019-20337 affects PHP Scripts Mall advanced-real-estate-script 4.0.9. The vulnerability is in news_edit.php, where the news_id parameter is vulnerable to SQL Injection. The root cause is improper input validation/sanitization of externally provided SQL statements. Reported impact in...
CVE-2018-16457
PHP Scripts Mall Open Source Real-estate Script 3.6.2 allows remote attackers to list the wp-content/themes/templatedpdec2015/img directory...
CVE-2018-16457
PHP Scripts Mall Open Source Real-estate Script 3.6.2 allows remote attackers to list the wp-content/themes/templatedpdec2015/img directory...
CVE-2018-16457
The CVE-2018-16457 issue affects PHP Scripts Mall Open Source Real-Estate Script 3.6.2, where the web application allows remote attackers to list files in wp-content/themes/template_dp_dec2015/img. Root cause is directory listing enabled for the theme directory, enabling enumeration of its conten...
PHP Scripts Mall advanced-real-estate-script cross-site scripting vulnerability
PHP Scripts Mall advanced-real-estate-script is a PHP and MySQL based real estate website system script by PHP Scripts Mall India. A cross-site scripting vulnerability exists in PHP Scripts Mall advanced-real-estate-script, which can be exploited by remote attackers to inject HTML code via the Na...
PHP Scripts Mall advanced-real-estate-script Cross-Site Request Forgery Vulnerability
PHP Scripts Mall advanced-real-estate-script is a PHP and MySQL based real estate website system script by PHP Scripts Mall India. A cross-site request forgery vulnerability exists in PHP Scripts Mall advanced-real-estate-script version 4.0.9. A remote attacker can exploit this vulnerability to...
PHP Scripts Mall advanced-real-estate-script Denial of Service Vulnerability
PHP Scripts Mall advanced-real-estate-script is a PHP and MySQL based real estate website system script by PHP Scripts Mall India. A denial of service vulnerability exists in PHP Scripts Mall advanced-real-estate-script version 4.0.9. The vulnerability can be exploited by a remote attacker to cau...
CVE-2018-15189
PHP Scripts Mall advanced-real-estate-script has XSS via the Name field of a profile...