cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-3163,https://securityvulnerability.io/vulnerability/CVE-2024-3163,Unprotected CSRF Vulnerability in Easy Property Listings Plugin Could Allow Admin Account Takeover,"The Easy Property Listings WordPress plugin before 3.5.4 does not have CSRF check when deleting contacts in bulk, which could allow attackers to make a logged in admin delete them via a CSRF attack",Wordpress,Easy Property Listings,4.3,MEDIUM,0.0004600000102072954,false,,false,false,true,2024-09-12T05:00:02.000Z,true,false,false,,2024-09-12T06:00:02.115Z,0
CVE-2024-1893,https://securityvulnerability.io/vulnerability/CVE-2024-1893,SQL Injection Vulnerability in Easy Property Listings Plugin for WordPress,"The Easy Property Listings plugin for WordPress has a vulnerability that permits time-based SQL Injection through the 'property_status' shortcode attribute. This security flaw affects all versions up to and including 3.5.2, stemming from inadequate parameter escaping and the absence of thorough query preparation. Authenticated attackers with contributor-level access can exploit this vulnerability to inject additional SQL commands into existing queries, enabling them to retrieve sensitive database information. This emphasizes the importance of timely updates and rigorous security practices for WordPress plugins.",Wordpress,Easy Property Listings,8.8,HIGH,0.00044999999227002263,false,,false,false,false,,,false,false,,2024-04-09T18:59:11.826Z,0
CVE-2019-15817,https://securityvulnerability.io/vulnerability/CVE-2019-15817,Cross-Site Scripting in Easy Property Listings Plugin for WordPress,"The Easy Property Listings plugin for WordPress, prior to version 3.4, is vulnerable to a Cross-Site Scripting (XSS) attack. This can allow attackers to inject malicious scripts into web pages viewed by other users, compromising user data and potentially allowing unauthorized actions.",Wordpress,Easy Property Listings,6.1,MEDIUM,0.0006600000197067857,false,,false,false,false,,,false,false,,2019-08-30T12:30:26.000Z,0