The wp-realty plugin for WordPress is a vulnerable software up to version 2.9.1. This means that it can be exploited by unauthenticated attackers, who can use it to gain access to sensitive information from the database. This is possible because of the lack of proper escaping on user-supplied parameters and insufficient preparation on the existing SQL query.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
