Live Vulnerability Intelligence

Threat Database

Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.

Total2

Critical0

High0

Medium2

Search Severity Year Type Sort Order

Reset

Showing 1-2 of 2 records

Threat Entry Updated 2025-04-18

CVE-2024-13347 - Essential Wp Real Estate Plugin

The Essential WP Real Estate WordPress plugin through 1.1.3 does not escape generated URLs before outputting them in attributes, leading to Reflected Cross-Site Scripting.

PLUGIN Essential Wp Real Estate

CVE-2024-13347

MEDIUM CVSS 6.8 2025-02-03

Risk Score

Open Full Technical Breakdown

Threat Entry Updated 2025-02-25

CVE-2024-13318 - Essential Wp Real Estate Plugin

The Essential WP Real Estate plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the cl_delete_listing_func() function in all versions up to, and including, 1.1.3. This makes it possible for unauthenticated attackers to delete arbitrary pages and posts.

PLUGIN Essential Wp Real Estate

CVE-2024-13318

MEDIUM CVSS 5.3 2025-01-10

Risk Score

Open Full Technical Breakdown

Blog

"Prevention is cheaper than a breach"

Threat Database

CVE-2024-13347 - Essential Wp Real Estate Plugin

CVE-2024-13318 - Essential Wp Real Estate Plugin

Company Links

Contact Us