| CVE-2024-23513 | Hig | 0.57 | 8.7 | 0.01 | | Feb 12, 2024 | Deserialization of Untrusted Data vulnerability in PropertyHive.This issue affects PropertyHive: from n/a through 2.0.5. |
| CVE-2024-29923 | Hig | 0.46 | 7.1 | 0.00 | | Mar 27, 2024 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in PropertyHive allows Reflected XSS.This issue affects PropertyHive: from n/a through 2.0.8. |
| CVE-2024-34381 | Med | 0.42 | 6.5 | 0.00 | | May 6, 2024 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in PropertyHive allows Stored XSS.This issue affects PropertyHive: from n/a through 2.0.10. |
| CVE-2024-27985 | Med | 0.35 | 5.4 | 0.00 | | Apr 11, 2024 | Deserialization of Untrusted Data vulnerability in PropertyHive.This issue affects PropertyHive: from n/a through 2.0.9. |
| CVE-2024-3607 | Med | 0.28 | 4.3 | 0.00 | | May 2, 2024 | The PropertyHive plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the delete_key_date() function in all versions up to, and including, 2.0.12. This makes it possible for authenticated attackers, with subscriber-level access and above, to delete arbitrary posts |
| CVE-2024-24718 | Med | 0.28 | 4.3 | 0.00 | | Mar 26, 2024 | Missing Authorization vulnerability in PropertyHive.This issue affects PropertyHive: from n/a through 2.0.6. |
