cbcvebase.

Realtyna Organic Idx Plugin vulnerabilities

5 known vulnerabilities affecting realtyna/realtyna_organic_idx_plugin.

Total CVEs
5
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL3HIGH2

Vulnerabilities

Page 1 of 1
CVE-2024-32128P2CRITICALCVSS 9.3PoC≥ n/a, ≤ 4.14.42024-04-15
CVE-2024-32128 [CRITICAL] CWE-89 CVE-2024-32128: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability i Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Realtyna Realtyna Organic IDX plugin.This issue affects Realtyna Organic IDX plugin: from n/a through 4.14.4.
nvd
CVE-2026-45439P2CRITICALCVSS 9.3≥ n/a, ≤ 5.1.02026-06-15
CVE-2026-45439 [CRITICAL] CWE-89 CVE-2026-45439: Unauthenticated SQL Injection in Realtyna Organic IDX plugin <= 5.1.0 versions. Unauthenticated SQL Injection in Realtyna Organic IDX plugin <= 5.1.0 versions.
nvd
CVE-2024-38736P3CRITICALCVSS 9.1≥ n/a, ≤ 4.14.132024-07-12
CVE-2024-38736 [CRITICAL] CWE-434 CVE-2024-38736: Unrestricted Upload of File with Dangerous Type vulnerability in Realtyna Realtyna Organic IDX plugi Unrestricted Upload of File with Dangerous Type vulnerability in Realtyna Realtyna Organic IDX plugin allows Code Injection.This issue affects Realtyna Organic IDX plugin: from n/a through 4.14.13.
nvd
CVE-2025-54052P3HIGHCVSS 7.5≤ 5.0.02025-08-20
CVE-2025-54052 [HIGH] CWE-352 CVE-2025-54052: Cross-Site Request Forgery (CSRF) vulnerability in Realtyna Realtyna Organic IDX plugin real-estate- Cross-Site Request Forgery (CSRF) vulnerability in Realtyna Realtyna Organic IDX plugin real-estate-listing-realtyna-wpl allows PHP Local File Inclusion.This issue affects Realtyna Organic IDX plugin: from n/a through <= 5.0.0.
nvd
CVE-2024-33924P4HIGHCVSS 7.1≥ n/a, ≤ 4.14.42024-05-03
CVE-2024-33924 [HIGH] CWE-79 CVE-2024-33924: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability i Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Realtyna Realtyna Organic IDX plugin allows Reflected XSS.This issue affects Realtyna Organic IDX plugin: from n/a through 4.14.4.
nvd
Realtyna Organic Idx Plugin vulnerabilities | cvebase