4 matches found
CVE-2025-1285
The Resido - Real Estate WordPress Theme theme for WordPress is vulnerable to unauthorized access due to a missing capability check on the deleteapikey and saveapikey AJAX actions in all versions up to, and including, 3.6. This makes it possible for unauthenticated attackers to issue requests to...
CVE-2025-1285
The Resido - Real Estate WordPress Theme theme for WordPress is vulnerable to unauthorized access due to a missing capability check on the deleteapikey and saveapikey AJAX actions in all versions up to, and including, 3.6. This makes it possible for unauthenticated attackers to issue requests to...
CVE-2025-1285
creationtimestamp| type| source ---|---|--- 2025-03-14 04:53:32+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/7528 2025-03-14 06:41:42+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lkcyxkazpo26 2025-03-14 08:20:56+00:00| seen| https://t.me/cvedetector/20273...
CVE-2025-1285 Resido - Real Estate WordPress Theme <= 3.6 - Missing Authorization to Unauthenticated Server-Side Request Forgery and API Key Settings Update
The Resido - Real Estate WordPress Theme theme for WordPress is vulnerable to unauthorized access due to a missing capability check on the deleteapikey and saveapikey AJAX actions in all versions up to, and including, 3.6. This makes it possible for unauthenticated attackers to issue requests to...