Advanced Real Estate Script Project Advanced Real Estate Script — known CVE vulnerabilities
Every CVE whose affected-product data names Advanced Real Estate Script Project Advanced Real Estate Script, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (13)
CVE-2017-17603 — CVSS 9.8 (critical): Advanced Real Estate Script 4.0.7 has SQL Injection via the search-results.php Projectmain, proj_type, searchtext, sell_price, or maxprice…
CVE-2019-20337 — CVSS 7.2 (high): In PHP Scripts Mall advanced-real-estate-script 4.0.9, the news_edit.php news_id parameter is vulnerable to SQL Injection.
CVE-2018-15188 — CVSS 6.5 (medium): PHP Scripts Mall advanced-real-estate-script 4.0.9 allows remote attackers to cause a denial of service (page structure loss) via crafted…
CVE-2019-20336 — CVSS 6.1 (medium): In PHP Scripts Mall advanced-real-estate-script 4.0.9, the search-results.php searchtext parameter is vulnerable to XSS.