ThreatPress

WordPress Vulnerabilities Database

Back

WordPress Real Estate 7 plugin <= 2.9.0 - Insecure Direct Object Reference vulnerability

Product
Real Estate 7
Description
Insecure Direct Object Reference vulnerability found by m0ze in WordPress Real Estate 7 plugin (versions <= 2.9.0).
Solution
2019 August 6 - no information about patched version available.
Classification
Type BYPASS
OWASP Top 10 A4: Insecure Direct Object References
References
Plugin changelog
CVE
Name CVE-N/A
Versions
Affected In <= 2.9.0
Disclosure date
2019-08-06
Credits
m0ze
Submitter
ThreatPress