Lucene search

Easy Property Listings Security Vulnerabilities - November

cve

CVE-2019-15817

The easy-property-listings plugin before 3.4 for WordPress has XSS.

6.1CVSS

6.4AI Score

0.001EPSS

2019-08-30 01:15 PM

cve

CVE-2020-5530

Cross-site request forgery (CSRF) vulnerability in Easy Property Listings versions prior to 3.4 allows remote attackers to hijack the authentication of administrators via unspecified vectors.

8.8CVSS

8.8AI Score

0.003EPSS

2020-02-18 06:15 AM

cve

CVE-2024-3163

The Easy Property Listings WordPress plugin before 3.5.4 does not have CSRF check when deleting contacts in bulk, which could allow attackers to make a logged in admin delete them via a CSRF attack

4.3CVSS

7AI Score

0.0005EPSS

2024-09-12 06:15 AM

cve

CVE-2024-32799

Missing Authorization vulnerability in Merv Barrett Easy Property Listings.This issue affects Easy Property Listings: from n/a through 3.5.3.

5.3CVSS

5.3AI Score

0.0004EPSS

2024-06-09 01:15 PM