Show filters
25 Total Results
Displaying 11-20 of 25
Sort by:
Attacker Value
Unknown

CVE-2018-5073

Disclosure Date: January 03, 2018 (last updated November 26, 2024)
Online Ticket Booking has CSRF via admin/movieedit.php.
0
0
Attacker Value
Unknown

CVE-2018-5076

Disclosure Date: January 03, 2018 (last updated November 26, 2024)
Online Ticket Booking has XSS via the admin/newsedit.php newstitle parameter.
0
0
Attacker Value
Unknown

CVE-2018-5072

Disclosure Date: January 03, 2018 (last updated November 26, 2024)
Online Ticket Booking has XSS via the admin/sitesettings.php keyword parameter.
0
0
Attacker Value
Unknown

CVE-2018-5078

Disclosure Date: January 03, 2018 (last updated November 26, 2024)
Online Ticket Booking has XSS via the admin/eventlist.php cast parameter.
0
0
Attacker Value
Unknown

CVE-2018-5077

Disclosure Date: January 03, 2018 (last updated November 26, 2024)
Online Ticket Booking has XSS via the admin/movieedit.php moviename parameter.
0
0
Attacker Value
Unknown

CVE-2018-5074

Disclosure Date: January 03, 2018 (last updated November 26, 2024)
Online Ticket Booking has XSS via the admin/manageownerlist.php contact parameter.
0
0
Attacker Value
Unknown

CVE-2017-17603

Disclosure Date: December 13, 2017 (last updated November 26, 2024)
Advanced Real Estate Script 4.0.7 has SQL Injection via the search-results.php Projectmain, proj_type, searchtext, sell_price, or maxprice parameter.
0
0
Attacker Value
Unknown

CVE-2013-5930

Disclosure Date: September 23, 2013 (last updated October 05, 2023)
Cross-site scripting (XSS) vulnerability in search_residential.php in Real Estate PHP Script allows remote attackers to inject arbitrary web script or HTML via the bos parameter.
0
0
Attacker Value
Unknown

CVE-2013-5931

Disclosure Date: September 23, 2013 (last updated October 05, 2023)
SQL injection vulnerability in property_listings_detail.php in Real Estate PHP Script allows remote attackers to execute arbitrary SQL commands via the listingid parameter.
0
0
Attacker Value
Unknown

CVE-2010-1062

Disclosure Date: March 23, 2010 (last updated October 04, 2023)
Directory traversal vulnerability in codelib/sys/common.inc.php in Phpkobo Free Real Estate Contact Form 1.09, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the LANG_CODE parameter. NOTE: some of these details are obtained from third party information.
0
0
View More Topics  < Previous  Next >