CVE-2025-24698 — Cross-Site Request Forgery in Essential Real Estate

CWE-352 — Cross-Site Request Forgery3 documents3 sources

Severity

—N/A

No vector

EPSS

0.1%

top 80.70%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

G5plus Essential Real Estate G5theme Essential Real Estate

Timeline

PublishedJan 24

Description

Cross-Site Request Forgery (CSRF) vulnerability in g5theme Essential Real Estate essential-real-estate allows Cross Site Request Forgery.This issue affects Essential Real Estate: from n/a through <= 5.1.8.

Affected Packages2 packages

▶CVEListV5g5theme/essential_real_estate5.1.8

▶NVDg5plus/essential_real_estate< 5.1.9

🔴Vulnerability Details

CVEList

WordPress Essential Real Estate plugin <= 5.1.8 - Cross Site Request Forgery (CSRF) vulnerability↗2025-01-24

▶

GHSA

GHSA-g339-vh54-3m75: Cross-Site Request Forgery (CSRF) vulnerability in G5Theme Essential Real Estate allows Cross Site Request Forgery↗2025-01-24

▶