Realestateconnected Easy_property_listings

6 CVEs affecting Realestateconnected Easy_property_listings. Latest disclosed: 2025-05-15. Critical: 0, High: 2.

Top CVEs affecting Realestateconnected Easy_property_listings
CVESeverityScorePublishedSummary
CVE-2024-1893High8.82024-04-09The Easy Property Listings plugin for WordPress is vulnerable to time-based SQL Injection via the ‘property_status’ shortcode attribute in all versions up to…
CVE-2020-5530High8.82020-02-18Cross-site request forgery (CSRF) vulnerability in Easy Property Listings versions prior to 3.4 allows remote attackers to hijack the authentication of adminis…
CVE-2019-15817Medium6.12019-08-30The easy-property-listings plugin before 3.4 for WordPress has XSS.
CVE-2024-32799Medium5.32024-06-09Missing Authorization vulnerability in Merv Barrett Easy Property Listings.This issue affects Easy Property Listings: from n/a through 3.5.3.
CVE-2024-2869Medium4.82025-05-15The Easy Property Listings WordPress plugin before 3.5.4 does not sanitise and escape some of its settings, which could allow high privilege users such as admi…
CVE-2024-3163Medium4.32024-09-12The Easy Property Listings WordPress plugin before 3.5.4 does not have CSRF check when deleting contacts in bulk, which could allow attackers to make a logged…