Advanced Real Estate Script@4.0.9 Security Vulnerabilities and Issues — Advanced Real Estate Script@4.0.9 CVE List

Lucene search

Advanced Real Estate Script ProjectAdvanced Real Estate Script4.0.9

5 matches found

CVE•added 2020/01/05 10:15 p.m.•67 views

CVE-2019-20337

In PHP Scripts Mall advanced-real-estate-script 4.0.9, the news_edit.php news_id parameter is vulnerable to SQL Injection.

7.2CVSS7.2AI score0.0032EPSS

CVE•added 2020/01/05 10:15 p.m.•59 views

CVE-2019-20336

In PHP Scripts Mall advanced-real-estate-script 4.0.9, the search-results.php searchtext parameter is vulnerable to XSS.

6.1CVSS6.3AI score0.00328EPSS

CVE•added 2018/08/10 3:29 p.m.•36 views

CVE-2018-15188

PHP Scripts Mall advanced-real-estate-script 4.0.9 allows remote attackers to cause a denial of service (page structure loss) via crafted JavaScript code in the Name field of a profile.

6.5CVSS6.5AI score0.00137EPSS

CVE•added 2018/08/10 3:29 p.m.•33 views

CVE-2018-15189

PHP Scripts Mall advanced-real-estate-script has XSS via the Name field of a profile.

5.4CVSS5.3AI score0.00206EPSS

CVE•added 2018/08/10 3:29 p.m.•31 views

CVE-2018-15187

PHP Scripts Mall advanced-real-estate-script 4.0.9 has CSRF via edit-profile.php.

8CVSS7.9AI score0.00135EPSS