cleantalk
Vulnerabilities and Security Researches

Realtyna Organic IDX plugin + WPL Real Estate, CVE-2025-54052

CVE, Research URL

CVE-2025-54052

Home page URL

Security reports for Realtyna Organic IDX plugin + WPL Real Estate

Application

Realtyna Organic IDX plugin + WPL Real Estate

Published on
Aug 20, 2025
Research Description
Cross-Site Request Forgery (CSRF) vulnerability in Realtyna Realtyna Organic IDX plugin real-estate-listing-realtyna-wpl allows PHP Local File Inclusion.This issue affects Realtyna Organic IDX plugin: from n/a through <= 5.0.0.
Affected versions
max 5.0.1.
Status
vulnerable
Previous vulnerability researches
Realtyna Organic IDX plugin + WPL Real Estate (CVE-2024-38736) , Jul 14, 2024
Realtyna Organic IDX plugin + WPL Real Estate (CVE-2025-54052) , Aug 02, 2025
Realtyna Organic IDX plugin + WPL Real Estate (CVE-2026-45439) , Jun 03, 2026
Realtyna Organic IDX plugin + WPL Real Estate (CVE-2024-33924) , Jun 07, 2024
Realtyna Organic IDX plugin + WPL Real Estate (CVE-2024-32128) , Jun 07, 2024
New vulnerability
EventPrime – Events Calendar, Bookings and Tickets (CVE-2026-42687) , Jun 03, 2026
Realtyna Organic IDX plugin + WPL Real Estate (CVE-2026-45439) , Jun 03, 2026
LearnPress &#8211; WordPress LMS Plugin (CVE-2026-48865) , Jun 03, 2026
Word Replacer (CVE-2026-3620) , Jun 03, 2026
Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin (CVE-2026-39447) , Jun 03, 2026