Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in PropertyHive allows Stored XSS.This issue affects PropertyHive: from n/a through...
6.5CVSS
7.2AI Score
0.0004EPSS
The PropertyHive plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the delete_key_date() function in all versions up to, and including, 2.0.12. This makes it possible for authenticated attackers, with subscriber-level access and above, to delete...
4.3CVSS
7AI Score
0.0004EPSS
Deserialization of Untrusted Data vulnerability in PropertyHive.This issue affects PropertyHive: from n/a through...
5.4CVSS
7.2AI Score
0.0004EPSS
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in PropertyHive allows Reflected XSS.This issue affects PropertyHive: from n/a through...
7.1CVSS
7.4AI Score
0.0004EPSS
Missing Authorization vulnerability in PropertyHive.This issue affects PropertyHive: from n/a through...
4.3CVSS
7.2AI Score
0.0004EPSS
Deserialization of Untrusted Data vulnerability in PropertyHive.This issue affects PropertyHive: from n/a through...
8.7CVSS
7.2AI Score
0.0004EPSS
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in PropertyHive plugin <= 1.5.48...
6.1CVSS
6.2AI Score
0.0005EPSS
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in PropertyHive plugin <= 1.5.46...
6.1CVSS
6.2AI Score
0.0005EPSS
The PropertyHive plugin before 1.4.15 for WordPress has XSS via the body parameter to...
6.1CVSS
6AI Score
0.001EPSS