3 matches found
CVE-2017-17909
CVE-2017-17909 affects the PHP Scripts Mall Responsive Realestate Script. The vulnerability is an XSS flaw exploitable via the admin/general.php gplus parameter, caused by unsanitized input. Impact details are limited to XSS as described; no explicit exploitation or remediation steps are provided...
CVE-2017-17628
CVE-2017-17628 affects Responsive Realestate Script 3.2 by PHP Scripts Mall. The vulnerability is a SQL injection in the property-list endpoint via the tbud parameter, allowing remote attackers to inject SQL commands. Public references (Exploit-DB entry 43297 and Packet Storm payload) indicate ex...
CVE-2017-17908
The CVE-2017-17908 entry concerns PHP Scripts Mall’s Responsive Realestate Script, which has a Cross-Site Request Forgery (CSRF) via the admin/general path. The vulnerability is documented across multiple sources (NVD, CNVD, CVE listing) with CSRF described as enabling an attacker to induce state...