cleantalk
Vulnerabilities and Security Researches

PropertyHive, CVE-2026-42729

CVE, Research URL

CVE-2026-42729

Home page URL

Security reports for PropertyHive

Application

PropertyHive

Published on
May 27, 2026
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Property Hive PropertyHive propertyhive allows DOM-Based XSS.This issue affects PropertyHive: from n/a through <= 2.2.2.
Affected versions
max 2.2.3.
Status
vulnerable
Previous vulnerability researches
File Manager (CVE-2024-37254) , Jul 01, 2024
File Manager (CVE-2018-16966) , Jun 06, 2024
File Manager (CVE-2024-0761) , Jun 06, 2024
File Manager (CVE-2023-6825) , Jun 06, 2024
File Manager (CVE-2021-24177) , Jun 06, 2024
New vulnerability
Style Kits &#8211; Advanced Theme Styles for Elementor (CVE-2026-6565) , May 28, 2026
EventPrime – Events Calendar, Bookings and Tickets (CVE-2026-42686) , May 28, 2026
E2Pdf &#8211; Export To Pdf Tool for WordPress (CVE-2026-42681) , May 28, 2026
Online Service Booking System &amp; Reservation Plugin &#8211; WpBookingly (CVE-2026-25444) , May 28, 2026
Ads by WPQuads – Adsense Ads, Banner Ads, Popup Ads (CVE-2026-42732) , May 28, 2026