CVE-2026-27050

CVE-2026-27050 is a CSRF vulnerability affecting the WordPress RealPress plugin (RealPress) for versions up to and including 1.1.0. The issue is documented across multiple sources (NVD, Red Hat, CVE List, etc.) with a consistent description and does not provide additional exploit details in the c...

CVE-2026-27050 WordPress RealPress plugin <= 1.1.0 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in ThimPress RealPress realpress allows Cross Site Request Forgery.This issue affects RealPress: from n/a through = 1.1.0...

WordPress plugin RealPress 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

WordPress RealPress plugin <= 1.1.0 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by hhhai in WordPress Plugin RealPress versions = 1.1.0...

WordPress RealPress plugin < 1.1.0 - Unauthenticated Content Creation/Email Sending via REST vulnerability

Unauthenticated Content Creation/Email Sending via REST vulnerability discovered by Khaled Alenazi Nxploited in WordPress Plugin RealPress versions 1.1.0...

CVE-2025-11191

The RealPress WordPress plugin before 1.1.0 registers the REST routes without proper permission checks, allowing the creation of pages and sending of emails from the site...

EUVD-2025-37303

The RealPress WordPress plugin before 1.1.0 registers the REST routes without proper permission checks, allowing the creation of pages and sending of emails from the site...

CVE-2025-11191

The RealPress WordPress plugin before 1.1.0 registers the REST routes without proper permission checks, allowing the creation of pages and sending of emails from the site...

CVE-2025-11191 RealPress < 1.1.0 - Unauthenticated Content Creation/Email Sending via REST

The RealPress WordPress plugin before 1.1.0 registers the REST routes without proper permission checks, allowing the creation of pages and sending of emails from the site...

CVE-2025-11191 RealPress < 1.1.0 - Unauthenticated Content Creation/Email Sending via REST

The RealPress WordPress plugin before 1.1.0 registers the REST routes without proper permission checks, allowing the creation of pages and sending of emails from the site...

CVE-2025-11191

The CVE-2025-11191 entry concerns the RealPress WordPress plugin prior to version 1.1.0. The connected documents state that REST routes are registered without proper permission checks, enabling unauthenticated actions that can create pages and send emails from the site. The vulnerability is limit...

WordPress plugin RealPress 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...

PT-2025-44579

Name of the Vulnerable Software and Affected Versions RealPress WordPress plugin versions prior to 1.1.0 Description The RealPress WordPress plugin does not properly validate permissions when registering REST routes. This allows for the creation of pages and the sending of emails on the site...