CVE-2019-25479

Inout RealEstate contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the city parameter. Attackers can send POST requests to the agents/agentlistdetails endpoint with malicious SQL payloads in the city paramete...

CVE-2019-25479 Inout RealEstate Lastest SQL Injection via agentlistdetails

Inout RealEstate contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the city parameter. Attackers can send POST requests to the agents/agentlistdetails endpoint with malicious SQL payloads in the city paramete...

Nesote Inout RealEstate SQL注入漏洞

Nesote Inout RealEstate is a real estate transaction website system developed by Nesote Corporation. Nesote Inout RealEstate has a SQL injection vulnerability; this vulnerability stems from the city parameter being subject to SQL injection attacks. Unauthorized attackers may exploit this...

Malicious Package

Overview realestate-ask is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

MAL-2026-944 Malicious code in realestate-ask (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bc4db310e1c17bbf02575dc3a75ab56d4d38581001d31617c583443f7d88a126 The package realestate-ask was found to contain malicious code. Source: ghsa-malware 75a155e1870bd51f018f66476427d1da99c87cbbcab800c354dad13f76b67c3b...

Malicious code in realestate-ask (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bc4db310e1c17bbf02575dc3a75ab56d4d38581001d31617c583443f7d88a126 The package realestate-ask was found to contain malicious code. Source: ghsa-malware 75a155e1870bd51f018f66476427d1da99c87cbbcab800c354dad13f76b67c3b...

MAL-2026-838 Malicious code in realestate-atlas (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6230992468654fdc80201d169ead3ce06356bb7cf36f8367f076d438035959a5 The package realestate-atlas was found to contain malicious code. Source: ossf-package-analysis...

Malicious code in realestate-atlas (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6230992468654fdc80201d169ead3ce06356bb7cf36f8367f076d438035959a5 The package realestate-atlas was found to contain malicious code. Source: ossf-package-analysis...

CVE-2022-31574

The deepaliupadhyay/RealEstate repository through 2018-11-30 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...

CVE-2025-14900

A security vulnerability has been detected in CodeAstro Real Estate Management System 1.0. Affected is an unknown function of the file /admin/userdelete.php of the component Administrator Endpoint. Such manipulation of the argument ID leads to sql injection. The attack may be launched remotely. T...

EUVD-2009-4566

Malware in sbrugna...

EUVD-2017-9051

Malware in sbrugna...

EUVD-2017-9052

Malware in sbrugna...

EUVD-2017-8749

Malware in sbrugna...

EUVD-2010-2367

Malware in sbrugna...

EUVD-2017-8786

Malware in sbrugna...

CVE-2025-9942

A vulnerability has been found in CodeAstro Real Estate Management System 1.0. Affected is an unknown function of the file /submitproperty.php. The manipulation leads to unrestricted upload. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used...

CVE-2025-2237

The WP RealEstate plugin for WordPress, used by the Homeo theme, is vulnerable to privilege escalation in all versions up to, and including, 1.6.26. This is due to insufficient role restrictions in the 'processregister' function. This makes it possible for unauthenticated attackers to register an...

CVE-2025-2237

CVE-2025-2237 affects WP RealEstate (WordPress plugin) with authentication bypass via process_register in all versions up to 1.6.26, allowing unauthenticated attackers to register as Administrator. Root cause: insufficient role restrictions in the plugin. Impact, as stated by trusted sources: una...

CVE-2025-2237 WP RealEstate <= 1.6.26 - Unauthenticated Privilege Escalation via 'process_register'

The WP RealEstate plugin for WordPress, used by the Homeo theme, is vulnerable to privilege escalation in all versions up to, and including, 1.6.26. This is due to insufficient role restrictions in the 'processregister' function. This makes it possible for unauthenticated attackers to register an...