Lucene search
K

CVE-2021-24387

🗓️ 06 Jul 2021 11:03:29Reported by WPScanType 
cve
 cve
🔗 web.nvd.nist.gov👁 72 Views🌐 WEB

The WP Pro Real Estate 7 WordPress theme before 3.1.1 allows reflected XSS via ct_community parameter

Related
Detection
Affected
Refs
Paths
ReporterTitlePublishedViews
Family
Circl
CVE-2021-24387
27 Apr 202309:58
circl
CNNVD
WordPress 插件跨站脚本漏洞
6 Jul 202100:00
cnnvd
CNVD
WordPress WP Pro Real Estate 7 Plugin Cross-Site Scripting Vulnerability
7 Jul 202100:00
cnvd
Cvelist
CVE-2021-24387 Real Estate 7 < 3.1.1 - Reflected Cross-Site Scripting (XSS)
6 Jul 202111:03
cvelist
Nuclei
WordPress Pro Real Estate 7 Theme <3.1.1 - Cross-Site Scripting
2 Jul 202609:36
nuclei
NVD
CVE-2021-24387
6 Jul 202111:15
nvd
OSV
CVE-2021-24387
6 Jul 202111:15
osv
Prion
Cross site scripting
6 Jul 202111:15
prion
RedhatCVE
CVE-2021-24387
22 May 202519:21
redhatcve
wpexploit
Real Estate 7 < 3.1.1 - Reflected Cross-Site Scripting (XSS)
10 Jun 202100:00
wpexploit
Rows per page
NVD
Vulners
Node
contempothemesreal_estate_7Range<3.1.1wordpress
[
  {
    "product": "WP Pro Real Estate 7",
    "vendor": "Contempoinc",
    "versions": [
      {
        "lessThan": "3.1.1",
        "status": "affected",
        "version": "3.1.1",
        "versionType": "custom"
      }
    ]
  }
]
ParameterPositionPathDescriptionCWE
ct_communityquery param/?ct_mobile_keyword&ct_keyword&ct_city&ct_zipcode&search-listings=true&ct_price_from&ct_price_to&ct_beds_plus&ct_baths_plus&ct_sqft_from&ct_sqft_to&ct_lotsize_from&ct_lotsize_to&ct_year_from&ct_year_to&ct_community=%3Cscript%3Ealert(document.domain);%3C/script%3E&ct_mls=&ct_brokerage=0&lat&lngReflected Cross-Site Scripting via ct_community parameter in search listings page.CWE-79

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

17 Jun 2026 03:39Current
6.1Medium risk
Vulners AI Score6.1
CVSS 24.3
CVSS 3.16.1
EPSS0.03677
72