CVE ID :CVE-2015-20115 Published : March 15, 2026, 6:34 p.m. | 1 hour, 3 minutes ago Description :Next Click Ventures RealtyScript 4.0.2 fails to properly sanitize file uploads, allowing attackers to store malicious scripts through the file POST parameter in admin/tools.php. Attackers can upload files containing JavaScript code that executes in the context of admin/tools.php when accessed by other users. Severity: 7.2 | HIGH Visit the link for more details, such as CVSS details, affected products, timeline, and more...