cleantalk
Vulnerabilities and Security Researches

Real Estate Manager – Property Listing and Agent Management, d6af075df9eeabb032a33ef472defe878bf92e29

CVE, Research URL

d6af075df9eeabb032a33ef472defe878bf92e29

Home page URL

Security reports for Real Estate Manager – Property Listing and Agent Management

Application

Real Estate Manager – Property Listing and Agent Management

Published on
Jun 13, 2019
Research Description
Real Estate Manager &#8211; Property Listing and Agent Management [real-estate-manager] < 7.0 Real Estate Manager – Property Listing and Agent Management <= 6.8 - Cross-Site Scripting The Real Estate Manager – Property Listing and Agent Management plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘revision’ parameter in versions up to, and including, 6.8 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.
Affected versions
max 7.0.
Status
vulnerable
Previous vulnerability researches
Real Estate Manager – Property Listing and Agent Management (CVE-2025-32668) , Apr 12, 2025
Real Estate Manager – Property Listing and Agent Management (CVE-2025-22645) , Feb 21, 2025
Real Estate Manager – Property Listing and Agent Management (CVE-2025-58253) , Apr 25, 2026
Real Estate Manager – Property Listing and Agent Management (CVE-2025-32150) , Apr 06, 2025
Real Estate Manager – Property Listing and Agent Management (CVE-2025-32596) , Apr 19, 2025
New vulnerability
Contact Form DB Divi (CVE-2023-33999) , Jun 13, 2026
WP SecureSubmit (CVE-2024-56270) , Jun 13, 2026
WP Delicious &#8211; Best WordPress Recipes Plugin (formerly Delicious Recipes) (CVE-2023-33999) , Jun 13, 2026
Advanced Form Integration &#8211; Connect WooCommerce and Contact Form 7 to Google Sheets and other platforms (CVE-2023-33999) , Jun 13, 2026
Easy Order View (CVE-2023-33999) , Jun 13, 2026