Vulnerabilities (CVE)

Filtered by vendor Realestateconnected Subscribe
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2024-3163 1 Realestateconnected 1 Easy Property Listings 2024-09-26 N/A 4.3 MEDIUM
The Easy Property Listings WordPress plugin before 3.5.4 does not have CSRF check when deleting contacts in bulk, which could allow attackers to make a logged in admin delete them via a CSRF attack
CVE-2020-5530 1 Realestateconnected 1 Easy Property Listings 2024-02-28 6.8 MEDIUM 8.8 HIGH
Cross-site request forgery (CSRF) vulnerability in Easy Property Listings versions prior to 3.4 allows remote attackers to hijack the authentication of administrators via unspecified vectors.
CVE-2019-15817 1 Realestateconnected 1 Easy Property Listings 2024-02-28 4.3 MEDIUM 6.1 MEDIUM
The easy-property-listings plugin before 3.4 for WordPress has XSS.