2 matches found
CVE-2025-64286
Cross-Site Request Forgery CSRF vulnerability in WpEstate WP Rentals wprentals allows Cross Site Request Forgery.This issue affects WP Rentals: from n/a through = 3.13.1...
CVE-2025-53330
CVE-2025-53330 : WP Rentals WordPress theme (up to 3.13.1) has stored XSS due to improper input neutralization during web page generation. This can enable cross-site scripting within affected sites using the WP Rentals theme. Remediation: upgrade to a fixed version (Patchstack lists 3.16.1 as the...