Realtyna Property Listing vulnerabilities
2 known vulnerabilities affecting realtyna/realtyna_property_listing.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
HIGH2
Vulnerabilities
Page 1 of 1
CVE-2015-7715P3HIGHCVSS 8.8PoCfixed in 8.9.52017-10-18
CVE-2015-7715 [HIGH] CWE-352 CVE-2015-7715: Cross-site request forgery (CSRF) vulnerability in the Realtyna RPL (com_rpl) component before 8.9.5
Cross-site request forgery (CSRF) vulnerability in the Realtyna RPL (com_rpl) component before 8.9.5 for Joomla! allows remote attackers to hijack the authentication of administrators for requests that add a user via an add_user action to administrator/index.php.
nvd
CVE-2015-7714P3HIGHCVSS 7.2PoCfixed in 8.9.52017-10-18
CVE-2015-7714 [HIGH] CWE-89 CVE-2015-7714: Multiple SQL injection vulnerabilities in the Realtyna RPL (com_rpl) component before 8.9.5 for Joom
Multiple SQL injection vulnerabilities in the Realtyna RPL (com_rpl) component before 8.9.5 for Joomla! allow remote administrators to execute arbitrary SQL commands via the (1) id, (2) copy_field in a data_copy action, (3) pshow in an update_field action, (4) css, (5) tip, (6) cat_id, (7) text_search, (8) plisting, or (9) pwizard parameter to administra
nvd