Lucene search
K

396 matches found

Nuclei
Nuclei
added 7 hours ago26 views

Realty by BestWebSoft < 1.1.0 - Cross-Site Scripting

The realty plugin before 1.1.0 for WordPress has multiple XSS issues. id: CVE-2017-18532 info: name: Realty by BestWebSoft 1.1.0 - Cross-Site Scripting author: luisfelipe146 severity: medium description: | The realty plugin before 1.1.0 for WordPress has multiple XSS issues. impact: | Authenticat...

6.1CVSS6.4AI score0.01441EPSS
Exploits1References4
Patchstack
Patchstack
added 2025/11/24 7:22 a.m.9 views

WordPress Realty Portal plugin <= 0.4.1 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Options Update vulnerability

Missing Authorization to Authenticated Subscriber+ Arbitrary Options Update vulnerability discovered by kr0d in WordPress Plugin Realty Portal versions = 0.4.1...

8.8CVSS7AI score0.00339EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2025/11/22 8:35 a.m.12 views

CVE-2025-11985

The Realty Portal plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the 'rpsavepropertysettings' function in versions 0.1 to 0.4.1. This makes it possible for authenticated attackers, with...

8.8CVSS6.1AI score0.00339EPSS
Exploits0References1
NVD
NVD
added 2025/11/21 8:15 a.m.8 views

CVE-2025-11985

The Realty Portal plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the 'rpsavepropertysettings' function in versions 0.1 to 0.4.1. This makes it possible for authenticated attackers, with...

8.8CVSS0.00339EPSS
Exploits0References6
Cvelist
Cvelist
added 2025/11/21 7:31 a.m.11 views

CVE-2025-11985 Realty Portal <= 0.4.1 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Options Update

The Realty Portal plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the 'rpsavepropertysettings' function in versions 0.1 to 0.4.1. This makes it possible for authenticated attackers, with...

8.8CVSS0.00339EPSS
Exploits0References6
CVE
CVE
added 2025/11/21 7:31 a.m.19 views

CVE-2025-11985

CVE-2025-11985 concerns Realty Portal for WordPress (versions ≤ 0.4.1). The vulnerability arises from a missing capability check in rp_save_property_settings, enabling authenticated users with Subscriber+ privileges to modify arbitrary WordPress options. This can be exploited to set the default r...

8.8CVSS5.7AI score0.00339EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2025/11/21 7:31 a.m.2 views

CVE-2025-11985 Realty Portal <= 0.4.1 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Options Update

The Realty Portal plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the 'rpsavepropertysettings' function in versions 0.1 to 0.4.1. This makes it possible for authenticated attackers, with...

8.8CVSS5.7AI score0.00339EPSS
Exploits0References6
EUVD
EUVD
added 2025/11/21 7:31 a.m.7 views

EUVD-2025-198416

The Realty Portal plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the 'rpsavepropertysettings' function in versions 0.1 to 0.4.1. This makes it possible for authenticated attackers, with...

8.8CVSS5.6AI score0.00339EPSS
Exploits0References8
CNNVD
CNNVD
added 2025/11/21 12:0 a.m.6 views

WordPress plugin Realty Portal 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to set up personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...

8.8CVSS6.4AI score0.00339EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2025/11/21 12:0 a.m.9 views

PT-2025-47689

Name of the Vulnerable Software and Affected Versions Realty Portal plugin for WordPress versions 0.1 through 0.4.1 Description The Realty Portal plugin for WordPress is susceptible to unauthorized data modification, potentially leading to privilege escalation. A missing capability check within t...

8.8CVSS6.4AI score0.00339EPSS
Exploits0References13
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2006-2671

Malware in sbrugna...

6.8CVSS6.4AI score0.01593EPSS
Exploits0References10
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2012-6432

Malware in sbrugna...

4.3CVSS6.4AI score0.01319EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2007-6138

Malware in sbrugna...

7.5CVSS6.4AI score0.01001EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2012-4224

Malware in sbrugna...

6.8CVSS6.4AI score0.01086EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2006-2850

Malware in sbrugna...

7.5CVSS6.4AI score0.01291EPSS
Exploits1References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2012-4222

Malware in sbrugna...

4.3CVSS6.4AI score0.01648EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2012-6431

Malware in sbrugna...

7.5CVSS6.4AI score0.01044EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2008-3668

Malware in sbrugna...

6.8CVSS6.4AI score0.01899EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2011-3722

Malware in sbrugna...

5CVSS6.4AI score0.01242EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2006-3163

Malware in sbrugna...

4.3CVSS6.4AI score0.00923EPSS
Exploits0References3
Rows per page
Query Builder