Critical severity9.9NVD Advisory· Published Jan 22, 2026· Updated Apr 15, 2026
CVE-2025-67968
CVE-2025-67968
Description
Unrestricted Upload of File with Dangerous Type vulnerability in InspiryThemes Real Homes CRM realhomes-crm allows Using Malicious Files.This issue affects Real Homes CRM: from n/a through <= 1.0.0.
Affected products
2- Range: <= 1.0.0
Patches
Vulnerability mechanics
References
1News mentions
1- Critical Arbitrary File Upload Vulnerability in RealHomes CRM Plugin Affecting 30k+ SitesPatchstack Blog · Jan 22, 2026