Vulnerabilities > WP Property Hive

DATE CVE VULNERABILITY TITLE RISK
2024-09-17 CVE-2024-8490 Cross-Site Request Forgery (CSRF) vulnerability in Wp-Property-Hive Propertyhive
The PropertyHive plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.0.19.
network
low complexity
wp-property-hive CWE-352
6.5
2024-06-08 CVE-2024-35701 Unspecified vulnerability in Wp-Property-Hive Propertyhive
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in PropertyHive allows Stored XSS.This issue affects PropertyHive: from n/a through 2.0.13.
network
low complexity
wp-property-hive
5.4
2024-02-12 CVE-2024-23513 Unspecified vulnerability in Wp-Property-Hive Propertyhive
Deserialization of Untrusted Data vulnerability in PropertyHive.This issue affects PropertyHive: from n/a through 2.0.5.
network
low complexity
wp-property-hive
critical
9.8
2023-05-15 CVE-2023-22706 Unspecified vulnerability in Wp-Property-Hive Propertyhive
Unauth.
network
low complexity
wp-property-hive
6.1
2023-04-07 CVE-2023-29172 Unspecified vulnerability in Wp-Property-Hive Propertyhive
Unauth.
network
low complexity
wp-property-hive
6.1
2018-01-31 CVE-2018-6465 Cross-site Scripting vulnerability in Wp-Property-Hive Propertyhive
The PropertyHive plugin before 1.4.15 for WordPress has XSS via the body parameter to includes/admin/views/html-preview-applicant-matches-email.php.
network
low complexity
wp-property-hive CWE-79
6.1