CVE-2025-23477 WordPress Realty Workstation plugin <= 1.0.45 - Broken Access Control vulnerability

Missing Authorization vulnerability in realtyworkstation Realty Workstation realty-workstation allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Realty Workstation: from n/a through = 1.0.45...

WordPress plugin Realty Workstation 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

WordPress Realty Workstation Plugin <= 1.0.45 is vulnerable to Broken Authentication

Software Realty Workstation Type Plugin Vulnerable versions = 1.0.45 Fixed in N/A OWASP Top 10 A7: Identification and Authentication Failures Classification Broken Authentication CVE CVE-2024-50489 Patch priority High CVSS severity High 9.8 Developer Claim ownership PSID 8f086511377f Credits...

CVE-2022-1691

The Realty Workstation WordPress plugin before 1.0.15 does not sanitise and escape the transedit parameter before using it in a SQL statement when an agent edit a transaction, leading to an SQL injection...

WordPress plugin Realty Workstation SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. WordPress plugin is an application plug-in. SQL injection vulnerability exists in versions prior to WordPress Realty Workstation plugin 1.0.15,...

PT-2022-14049 · WordPress · Realty Workstation

Name of the Vulnerable Software and Affected Versions: The Realty Workstation WordPress plugin versions prior to 1.0.15 Description: The issue arises from the lack of sanitization and escaping of the trans edit parameter before its use in a SQL statement when an agent edits a transaction, leading...