Radiustheme

Classified Listing

14 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2026-23546

  • EPSS 0.04%
  • Veröffentlicht 05.03.2026 06:16:22
  • Zuletzt bearbeitet 09.03.2026 20:16:06

Insertion of Sensitive Information Into Sent Data vulnerability in RadiusTheme Classified Listing classified-listing allows Retrieve Embedded Sensitive Data.This issue affects Classified Listing: from n/a through <= 5.3.4.

4.3

CVE-2025-58601

  • EPSS 0.03%
  • Veröffentlicht 03.09.2025 14:36:39
  • Zuletzt bearbeitet 15.04.2026 00:35:42

Missing Authorization vulnerability in RadiusTheme Classified Listing classified-listing allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Classified Listing: from n/a through <= 5.0.6.

5.4

CVE-2025-54698

  • EPSS 0.03%
  • Veröffentlicht 14.08.2025 10:34:54
  • Zuletzt bearbeitet 15.04.2026 00:35:42

Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in RadiusTheme Classified Listing classified-listing allows Code Injection.This issue affects Classified Listing: from n/a through <= 5.0.0.

7.5

CVE-2025-52715

  • EPSS 0.09%
  • Veröffentlicht 20.06.2025 15:15:32
  • Zuletzt bearbeitet 15.04.2026 00:35:42

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in RadiusTheme Classified Listing classified-listing allows PHP Local File Inclusion.This issue affects Classified Listing: from n/a...

7.1

CVE-2025-24745

  • EPSS 0.14%
  • Veröffentlicht 17.04.2025 15:48:11
  • Zuletzt bearbeitet 15.04.2026 00:35:42

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in RadiusTheme Classified Listing classified-listing allows Reflected XSS.This issue affects Classified Listing: from n/a through <= 4.0.1.

5.3

CVE-2025-1063

  • EPSS 0.17%
  • Veröffentlicht 25.02.2025 07:15:17
  • Zuletzt bearbeitet 25.02.2025 07:15:17

The Classified Listing – Classified ads & Business Directory Plugin plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 4.0.4 via the rtcl_taxonomy_settings_export function. This makes it possibl...

5.3

CVE-2024-52386

  • EPSS 1.47%
  • Veröffentlicht 16.11.2024 22:15:03
  • Zuletzt bearbeitet 15.04.2026 00:35:42

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in RadiusTheme Classified Listing classified-listing allows PHP Local File Inclusion.This issue affects Classified Listing: from n/a...

4.3

CVE-2024-7888

  • EPSS 0.15%
  • Veröffentlicht 13.09.2024 07:15:06
  • Zuletzt bearbeitet 06.11.2025 22:26:57

The Classified Listing – Classified ads & Business Directory Plugin plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on several functions like export_forms(), import_forms(), update_fb_options(), and many mo...

4.3

CVE-2024-3893

  • EPSS 0.08%
  • Veröffentlicht 25.04.2024 08:15:07
  • Zuletzt bearbeitet 08.04.2026 19:21:29

The Classified Listing – Classified ads & Business Directory Plugin plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the rtcl_fb_gallery_image_delete AJAX action in all versions up to, and including...

8.8

CVE-2024-1315

  • EPSS 0.45%
  • Veröffentlicht 09.04.2024 19:15:16
  • Zuletzt bearbeitet 08.04.2026 18:20:33

The Classified Listing – Classified ads & Business Directory Plugin plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.0.4. This is due to missing or incorrect nonce validation on the 'rtcl_update...