CVE-2015-20113

Name of the Vulnerable Software and Affected Versions RealtyScript version 4.0.2

Description RealtyScript 4.0.2 contains cross-site request forgery and persistent cross-site scripting issues that allow attackers to perform administrative actions and inject malicious scripts. Attackers can create malicious web pages that execute unauthorized actions when authenticated users visit them, or inject persistent scripts that execute within the application context.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.