WordPress Real Estate 7 Theme <= 3.3.1 is vulnerable to Cross Site Scripting (XSS)
CVE-2022-47146
7.1HIGH
What is CVE-2022-47146?
The Contempoinc Real Estate 7 WordPress theme has a vulnerability that allows attackers to exploit unauthenticated reflected Cross-Site Scripting (XSS). This can potentially enable malicious actors to execute scripts in users' browsers by tricking them into clicking a crafted link. Affected users are encouraged to update to the latest version to mitigate this risk.
Affected Version(s)
Real Estate 7 WordPress <= 3.3.1