Themes Vulnerabilities

Real Estate 7 < 3.0.5 - Unauthenticated Reflected XSS

Description

An Unauthenticated Reflected XSS vulnerability was discovered in the Real Estate 7 theme v3.0.4 for WordPress.

Vulnerable parameters: ct_sqft_from, ct_sqft_to, ct_lotsize_from, ct_lotsize_to, ct_mls.

Edit (WPScanTeam): The issue has been hot-fixed in 3.0.4. So the fixed in has been set to 3.0.5 (the next version to be released)

Proof of Concept

Affects Themes

realestate-7
Fixed in 3.0.5

References

URL
https://themeforest.net/item/wp-pro-real-estate-7-responsive-real-estate-wordpress-theme/12473778
URL
https://contempothemes.com/wp-real-estate-7/changelog/
URL
https://medium.com/@ex.mi/wordpress-real-estate-7-theme-v3-0-5-unauthenticated-reflected-xss-8dc8b8050acf

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79
CVSS
6.1 (medium)

Miscellaneous

Original Researcher
Ex.Mi
Submitter
Ex.Mi
Submitter website
https://ex-mi.ru
Verified
Yes
WPVDB ID
b02ae01d-d08f-4e6d-8395-0cdbb05765c1

Timeline

Publicly Published
2020-08-29 (about 5 years ago)
Added
2020-10-07 (about 5 years ago)
Last Updated
2020-10-08 (about 5 years ago)

Other

Published
Title
Published
2023-01-10
Title
Clean Login < 1.13.7 - Contributor+ Stored XSS via Shortcode
Published
2024-07-11
Title
Zoho Campaigns < 2.1.0 - Authenticated (Subscriber+) Stored Cross-Site Scripting
Published
2023-11-27
Title
Simple Long Form <= 2.2.2 - Authenticated (Administrator+) Stored Cross-Site Scripting
Published
2024-12-11
Title
Photo Gallery, Images, Slider in Rbs Image Gallery < 3.2.24 - Admin+ Stored XSS
Published
2025-12-24
Title
Gift Hunt <= 2.0.2 - Authenticated (Administrator+) Stored Cross-Site Scripting