CVE ID :CVE-2015-20120 Published : March 15, 2026, 6:35 p.m. | 1 hour, 1 minute ago Description :Next Click Ventures RealtyScript 4.0.2 contains multiple time-based blind SQL injection vulnerabilities that allow unauthenticated attackers to extract database information by injecting SQL code into application parameters. Attackers can craft requests with time-delay payloads to infer database contents character by character based on response timing differences. Severity: 8.8 | HIGH Visit the link for more details, such as CVSS details, affected products, timeline, and more...