Easy Property Listings Security Vulnerabilities and Issues — Easy Property Listings CVE List

Lucene search

RealestateconnectedEasy Property Listings

3 matches found

CVE•added 2024/09/12 6:15 a.m.•45 views

CVE-2024-3163

The Easy Property Listings WordPress plugin before 3.5.4 does not have CSRF check when deleting contacts in bulk, which could allow attackers to make a logged in admin delete them via a CSRF attack

4.3CVSS4.5AI score0.00061EPSS

CVE•added 2024/06/09 1:15 p.m.•45 views

CVE-2024-32799

Missing Authorization vulnerability in Merv Barrett Easy Property Listings.This issue affects Easy Property Listings: from n/a through 3.5.3.

9.8CVSS5.3AI score0.0026EPSS

CVE•added 2024/04/09 7:15 p.m.•37 views

CVE-2024-1893

The Easy Property Listings plugin for WordPress is vulnerable to time-based SQL Injection via the ‘property_status’ shortcode attribute in all versions up to, and including, 3.5.2 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL quer...

8.8CVSS9.3AI score0.00308EPSS