ThreatPress

WordPress Vulnerabilities Database

Back

WordPress Real Estate 7 plugin <= 2.9.0 - Stored Cross-Site Scripting (XSS) vulnerability

Product
Real Estate 7
Description
Stored Cross-Site Scripting (XSS) vulnerability found by m0ze in WordPress Real Estate 7 plugin (versions <= 2.9.0).
Solution
2019 August 6 - no information about patched version available.
Classification
Type XSS (Cross Site Scripting)
OWASP Top 10 A3: Cross Site Scripting (XSS)
References
Plugin changelog
CVE
Name CVE-N/A
Versions
Affected In <= 2.9.0
Disclosure date
2019-08-06
Credits
m0ze
Submitter
ThreatPress