Free Realty » Free Realty : Security Vulnerabilities, CVEs,
Free Realty before 2.9 allows remote attackers to obtain the full path and other sensitive information via unspecified manipulations that produce an error message.
Max CVSS
5.0
EPSS Score
0.49%
Published
2006-06-22
Updated
2017-07-20
Cross-site scripting (XSS) vulnerability in propview.php in Free Realty 2.9-0.6 and earlier allows remote attackers to execute arbitrary web script or HTML via the sort parameter.
Max CVSS
4.3
EPSS Score
0.17%
Published
2006-06-22
Updated
2017-07-20
SQL injection vulnerability in propview.php in Free Realty 2.9-0.7 and earlier allows remote attackers to execute arbitrary SQL commands via the sort parameter.
Max CVSS
7.5
EPSS Score
0.97%
Published
2006-06-22
Updated
2017-07-20
3 vulnerabilities found