Easy Property Listings < 3.4 – Cross-Site Request Forgery (CSRF) | CVE 2020-5530

Affects Plugins

easy-property-listings

Fixed in 3.4

References

CVE

CVE-2020-5530

URL

https://jvn.jp/en/jp/JVN89259622/index.html

Classification

Type

CSRF

OWASP top 10

A2: Broken Authentication and Session Management

CWE

CWE-352

CVSS

8.8 (high)

Miscellaneous

Verified

No

WPVDB ID

ea916735-d630-4760-8f56-b2e3ad139823

Timeline

Publicly Published

2020-02-18 (about 6 years ago)

Added

2020-02-18 (about 6 years ago)

Last Updated

2020-09-22 (about 5 years ago)

Other

Published

Title

Published

2025-06-05

Title

WP Mail Options <= 0.2.3 - Cross-Site Request Forgery to Stored Cross-Site Scripting

Published

2021-03-01

Title

Better Search < 2.5.3 - Cross-Site Request Forgery

Published

2024-03-25

Title

Smart Forms < 2.6.94 - Edit Entries via CSRF

Published

2025-10-16

Title

Simple Content Templates for Blog Posts & Pages <= 2.2.61 - Cross-Site Request Forgery

Published

2023-06-26

Title

WooCommerce Google Sheet Connector < 1.3.6 - Access Code Update via CSRF