Vulnerabilidades em PropertyHive
14 resultadosCVE-2024-3607MEDIUMPropertyHive <= 2.0.12 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Post DeletionEPSS 0.6%CVE-2024-23513HIGHWordPress PropertyHive Plugin <= 2.0.5 is vulnerable to PHP Object InjectionEPSS 0.5%CVE-2024-29923HIGHWordPress PropertyHive plugin <= 2.0.8 - Reflected Cross Site Scripting (XSS) vulnerabilityEPSS 0.4%CVE-2023-22706HIGHWordPress PropertyHive Plugin <= 1.5.48 is vulnerable to Cross Site Scripting (XSS)EPSS 0.4%CVE-2023-29172HIGHWordPress PropertyHive Plugin <= 1.5.46 is vulnerable to Cross Site Scripting (XSS)EPSS 0.4%CVE-2024-37204MEDIUMWordPress PropertyHive plugin <= 2.0.9 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2024-27985MEDIUMWordPress PropertyHive plugin <= 2.0.9 - PHP Object Injection vulnerabilityEPSS 0.4%CVE-2024-11940MEDIUMProperty Hive Mortgage Calculator <= 1.0.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via price ParameterEPSS 0.3%CVE-2024-8490HIGHPropertyHive <= 2.0.19 - Cross-Site Request Forgery via save_account_detailsEPSS 0.3%CVE-2024-34381MEDIUMWordPress PropertyHive plugin <= 2.0.10 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.3%CVE-2024-24718MEDIUMWordPress PropertyHive plugin <= 2.0.6 - Missing Authorization to Non-Arbitrary Plugin Installation vulnerabilityEPSS 0.3%CVE-2024-12465MEDIUMProperty Hive Stamp Duty Calculator <= 1.0.22 - Authenticated (Contributor+) Stored Cross-Site ScriptingEPSS 0.3%CVE-2024-35701MEDIUMWordPress PropertyHive plugin <= 2.0.13 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.3%CVE-2025-0808MEDIUMHouzez Property Feed <= 2.4.21 - Cross-Site Request Forgery to Property Feed Export DeletionEPSS 0.2%