CVE-2007-6463

PHP Real Estate Classifieds - XSS

Title source: llm

Description

Multiple cross-site scripting (XSS) vulnerabilities in the admin panel in PHP Real Estate Classifieds allow remote attackers to inject arbitrary web script or HTML via unspecified "text areas/boxes."

References (2)

[Third Party Advisory, VDB Entry] http://osvdb.org/43708

[Various Sources] http://phprealestatescript.com/PHPREC-121707-646PM-PATCH.zip

Scores

EPSS 0.0025

EPSS Percentile 47.6%

Classification

CWE

CWE-79

Status draft

Affected Products (1)

php_real_estate_script/classifieds

Timeline

Published Dec 20, 2007

Tracked Since Feb 18, 2026