VYPR

Realty Portal Agent

by WordPress

Source repositories

CVEs (1)

  • CVE-2025-6190HigJul 23, 2025
    risk 0.57cvss 8.8epss 0.00

    The Realty Portal – Agent plugin for WordPress is vulnerable to Privilege Escalation due to missing authorization within the rp_user_profile() AJAX handler in versions 0.1.0 through 0.3.9. The handler reads the client-supplied meta key and value pairs from $_POST and passes…