cleantalk
Vulnerabilities and Security Researches

Estatik Real Estate Plugin, CVE-2025-26905

CVE, Research URL

CVE-2025-26905

Home page URL

Security reports for Estatik Real Estate Plugin

Application

Estatik Real Estate Plugin

Published on
Feb 25, 2025
Research Description
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Estatik Estatik allows PHP Local File Inclusion. This issue affects Estatik: from n/a through 4.1.9.
Affected versions
max 4.1.9.
Status
vulnerable
Previous vulnerability researches
Estatik Mortgage Calculator (CVE-2025-48136) , May 18, 2025
Estatik Mortgage Calculator (CVE-2025-26907) , Feb 27, 2025
Estatik Mortgage Calculator (CVE-2023-28490) , Jun 10, 2024
Estatik Mortgage Calculator (CVE-2023-40601) , Jun 10, 2024
Estatik Mortgage Calculator (CVE-2024-9354) , Jan 08, 2025
New vulnerability
Evergreen Content Poster – Auto Post and Schedule Your Best Content to Social Media (CVE-2025-49373) , Nov 10, 2025
Evergreen Content Poster – Auto Post and Schedule Your Best Content to Social Media (CVE-2025-64234) , Nov 10, 2025
Photos and Files Contest Gallery – Contact Form, Upload Form, Social Share and Voting Plugin for WordPress (CVE-2025-11254) , Nov 10, 2025
Photos and Files Contest Gallery – Contact Form, Upload Form, Social Share and Voting Plugin for WordPress (CVE-2025-10383) , Nov 10, 2025
Photos and Files Contest Gallery – Contact Form, Upload Form, Social Share and Voting Plugin for WordPress (CVE-2025-62950) , Nov 10, 2025