All 8 CVE vulnerabilities found in RealtyScript, with AI-generated Chinese analysis, references, and POCs.
Vendor: Next Click Ventuers
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2015-20120 | RealtyScript 4.0.2 Multiple Time-based Blind SQL Injection CWE-89 | 8.2 | High | 2026-03-15 |
| CVE-2015-20119 | RealtyScript 4.0.2 Stored Cross-Site Scripting via text Parameter in pages.php CWE-79 | 6.4 | Medium | 2026-03-15 |
| CVE-2015-20118 | RealtyScript 4.0.2 Stored Cross-Site Scripting via location_name Parameter CWE-79 | 7.2 | High | 2026-03-15 |
| CVE-2015-20117 | RealtyScript 4.0.2 Cross-Site Request Forgery Unauthorized User Creation CWE-352 | 5.3 | Medium | 2026-03-15 |
| CVE-2015-20115 | RealtyScript 4.0.2 Stored Cross-Site Scripting via File Upload Parameter CWE-79 | 7.2 | High | 2026-03-15 |
| CVE-2015-20116 | RealtyScript 4.0.2 Stored Cross-Site Scripting via CSV File Upload Filename CWE-79 | 6.1 | Medium | 2026-03-15 |
| CVE-2015-20113 | RealtyScript 4.0.2 Multiple Cross-Site Request Forgery and Persistent Cross-Site Scripting Vulnerabilities CWE-352 | 5.3 | Medium | 2026-03-15 |
| CVE-2015-20114 | RealtyScript 4.0.2 Cross-Site Scripting via Multiple Parameters CWE-79 | 6.1 | Medium | 2026-03-15 |
All 8 known CVE vulnerabilities affecting RealtyScript with full Chinese analysis, references, and POCs where available.