Description
Multiple vulnerabilities was discovered in the «Real Estate 7 WordPress», tested version — v2.9.4: - Unauthenticated Reflected XSS - Authenticated Persistent XSS - Authenticated Persistent Self-XSS - IDOR - Information Exposure Edit (WPScanTeam): January 12th - Report Received & Envato Contacted January 13th - Envato Investigating January 13th - v2.9.5 released, fixing the issues