advanced_real_estate_script_project CVE Vulnerabilities & Metrics

Focus on advanced_real_estate_script_project vulnerabilities and metrics.

Last updated: 08 Mar 2025, 23:25 UTC

About advanced_real_estate_script_project Security Exposure

This page consolidates all known Common Vulnerabilities and Exposures (CVEs) associated with advanced_real_estate_script_project. We track both calendar-based metrics (using fixed periods) and rolling metrics (using gliding windows) to give you a comprehensive view of security trends and risk evolution. Use these insights to assess risk and plan your patching strategy.

For a broader perspective on cybersecurity threats, explore the comprehensive list of CVEs by vendor and product. Stay updated on critical vulnerabilities affecting major software and hardware providers.

Global CVE Overview

Total advanced_real_estate_script_project CVEs: 13
Earliest CVE date: 13 Dec 2017, 09:29 UTC
Latest CVE date: 05 Jan 2020, 22:15 UTC

Latest CVE reference: CVE-2019-20337

Rolling Stats

30-day Count (Rolling): 0
365-day Count (Rolling): 0

Calendar-based Variation

Calendar-based Variation compares a fixed calendar period (e.g., this month versus the same month last year), while Rolling Growth Rate uses a continuous window (e.g., last 30 days versus the previous 30 days) to capture trends independent of calendar boundaries.

Variations & Growth

Month Variation (Calendar): 0%
Year Variation (Calendar): 0%

Month Growth Rate (30-day Rolling): 0.0%
Year Growth Rate (365-day Rolling): 0.0%

Monthly CVE Trends (current vs previous Year)

Annual CVE Trends (Last 20 Years)

Critical advanced_real_estate_script_project CVEs (CVSS ≥ 9) Over 20 Years

CVSS Stats

Average CVSS: 4.64

Max CVSS: 7.5

Critical CVEs (≥9): 0

CVSS Range vs. Count

Range	Count
0.0-3.9	7
4.0-6.9	5
7.0-8.9	1
9.0-10.0	0

CVSS Distribution Chart

Top 5 Highest CVSS advanced_real_estate_script_project CVEs

These are the five CVEs with the highest CVSS scores for advanced_real_estate_script_project, sorted by severity first and recency.

CVE-2017-17603 advanced_real_estate_script_project Published on 13 Dec 2017, 09:29 UTC (CVSS: 7.5)
Advanced Real Estate Script 4.0.7 has SQL Injection via the search-results.php Projectmain, proj_type, searchtext, sell_price, or maxprice parameter.
CVE-2019-20337 advanced_real_estate_script_project Published on 05 Jan 2020, 22:15 UTC (CVSS: 6.5)
In PHP Scripts Mall advanced-real-estate-script 4.0.9, the news_edit.php news_id parameter is vulnerable to SQL Injection.
CVE-2018-15187 advanced_real_estate_script_project Published on 10 Aug 2018, 15:29 UTC (CVSS: 6.0)
PHP Scripts Mall advanced-real-estate-script 4.0.9 has CSRF via edit-profile.php.
CVE-2018-5073 advanced_real_estate_script_project Published on 03 Jan 2018, 20:29 UTC (CVSS: 6.0)
Online Ticket Booking has CSRF via admin/movieedit.php.
CVE-2018-15188 advanced_real_estate_script_project Published on 10 Aug 2018, 15:29 UTC (CVSS: 5.5)
PHP Scripts Mall advanced-real-estate-script 4.0.9 allows remote attackers to cause a denial of service (page structure loss) via crafted JavaScript code in the Name field of a profile.

All CVEs for advanced_real_estate_script_project

CVE-2019-20337 advanced_real_estate_script_project vulnerability CVSS: 6.5 05 Jan 2020, 22:15 UTC

In PHP Scripts Mall advanced-real-estate-script 4.0.9, the news_edit.php news_id parameter is vulnerable to SQL Injection.

CVE-2019-20336 advanced_real_estate_script_project vulnerability CVSS: 4.3 05 Jan 2020, 22:15 UTC

In PHP Scripts Mall advanced-real-estate-script 4.0.9, the search-results.php searchtext parameter is vulnerable to XSS.

CVE-2018-15189 advanced_real_estate_script_project vulnerability CVSS: 3.5 10 Aug 2018, 15:29 UTC

PHP Scripts Mall advanced-real-estate-script has XSS via the Name field of a profile.

CVE-2018-15188 advanced_real_estate_script_project vulnerability CVSS: 5.5 10 Aug 2018, 15:29 UTC

PHP Scripts Mall advanced-real-estate-script 4.0.9 allows remote attackers to cause a denial of service (page structure loss) via crafted JavaScript code in the Name field of a profile.

CVE-2018-15187 advanced_real_estate_script_project vulnerability CVSS: 6.0 10 Aug 2018, 15:29 UTC

PHP Scripts Mall advanced-real-estate-script 4.0.9 has CSRF via edit-profile.php.

CVE-2018-5078 advanced_real_estate_script_project vulnerability CVSS: 3.5 03 Jan 2018, 20:29 UTC

Online Ticket Booking has XSS via the admin/eventlist.php cast parameter.

CVE-2018-5077 advanced_real_estate_script_project vulnerability CVSS: 3.5 03 Jan 2018, 20:29 UTC

Online Ticket Booking has XSS via the admin/movieedit.php moviename parameter.

CVE-2018-5076 advanced_real_estate_script_project vulnerability CVSS: 3.5 03 Jan 2018, 20:29 UTC

Online Ticket Booking has XSS via the admin/newsedit.php newstitle parameter.

CVE-2018-5075 advanced_real_estate_script_project vulnerability CVSS: 3.5 03 Jan 2018, 20:29 UTC

Online Ticket Booking has XSS via the admin/snacks_edit.php snacks_name parameter.

CVE-2018-5074 advanced_real_estate_script_project vulnerability CVSS: 3.5 03 Jan 2018, 20:29 UTC

Online Ticket Booking has XSS via the admin/manageownerlist.php contact parameter.

CVE-2018-5073 advanced_real_estate_script_project vulnerability CVSS: 6.0 03 Jan 2018, 20:29 UTC

Online Ticket Booking has CSRF via admin/movieedit.php.

CVE-2018-5072 advanced_real_estate_script_project vulnerability CVSS: 3.5 03 Jan 2018, 20:29 UTC

Online Ticket Booking has XSS via the admin/sitesettings.php keyword parameter.

CVE-2017-17603 advanced_real_estate_script_project vulnerability CVSS: 7.5 13 Dec 2017, 09:29 UTC

Advanced Real Estate Script 4.0.7 has SQL Injection via the search-results.php Projectmain, proj_type, searchtext, sell_price, or maxprice parameter.