Radiustheme

Classified Listing

14 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
0

CVE-2026-23546

  • EPSS -
  • Veröffentlicht 05.03.2026 06:16:22
  • Zuletzt bearbeitet 05.03.2026 06:16:22

Insertion of Sensitive Information Into Sent Data vulnerability in RadiusTheme Classified Listing classified-listing allows Retrieve Embedded Sensitive Data.This issue affects Classified Listing: from n/a through <= 5.3.4.

4.3

CVE-2025-58601

  • EPSS 0.04%
  • Veröffentlicht 03.09.2025 14:36:39
  • Zuletzt bearbeitet 04.09.2025 15:35:29

Missing Authorization vulnerability in RadiusTheme Classified Listing allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Classified Listing: from n/a through 5.0.6.

5.4

CVE-2025-54698

  • EPSS 0.03%
  • Veröffentlicht 14.08.2025 10:34:54
  • Zuletzt bearbeitet 14.08.2025 13:11:53

Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in RadiusTheme Classified Listing allows Code Injection. This issue affects Classified Listing: from n/a through 5.0.0.

7.5

CVE-2025-52715

  • EPSS 0.13%
  • Veröffentlicht 20.06.2025 15:15:32
  • Zuletzt bearbeitet 23.06.2025 20:16:40

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in RadiusTheme Classified Listing allows PHP Local File Inclusion. This issue affects Classified Listing: from n/a through 4.2.0.

7.1

CVE-2025-24745

  • EPSS 0.19%
  • Veröffentlicht 17.04.2025 15:48:11
  • Zuletzt bearbeitet 17.04.2025 20:21:48

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in RadiusTheme Classified Listing allows Reflected XSS. This issue affects Classified Listing: from n/a through 4.0.1.

5.3

CVE-2025-1063

  • EPSS 0.28%
  • Veröffentlicht 25.02.2025 07:15:17
  • Zuletzt bearbeitet 25.02.2025 07:15:17

The Classified Listing – Classified ads & Business Directory Plugin plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 4.0.4 via the rtcl_taxonomy_settings_export function. This makes it possibl...

5.3

CVE-2024-52386

  • EPSS 0.48%
  • Veröffentlicht 16.11.2024 22:15:03
  • Zuletzt bearbeitet 18.11.2024 17:11:17

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Business Directory Team by RadiusTheme Classified Listing classified-listing allows PHP Local File Inclusion.This issue affects C...

4.3

CVE-2024-7888

  • EPSS 0.15%
  • Veröffentlicht 13.09.2024 07:15:06
  • Zuletzt bearbeitet 06.11.2025 22:26:57

The Classified Listing – Classified ads & Business Directory Plugin plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on several functions like export_forms(), import_forms(), update_fb_options(), and many mo...

4.3

CVE-2024-3893

  • EPSS 0.08%
  • Veröffentlicht 25.04.2024 08:15:07
  • Zuletzt bearbeitet 23.04.2025 19:35:15

The Classified Listing – Classified ads & Business Directory Plugin plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the rtcl_fb_gallery_image_delete AJAX action in all versions up to, and including...

8.8

CVE-2024-1315

  • EPSS 0.45%
  • Veröffentlicht 09.04.2024 19:15:16
  • Zuletzt bearbeitet 17.01.2025 17:30:38

The Classified Listing – Classified ads & Business Directory Plugin plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.0.4. This is due to missing or incorrect nonce validation on the 'rtcl_update...