Code Injection Vulnerability in Realtyna Organic IDX Plugin by Realtyna
CVE-2026-57811

10CRITICAL

Key Information:

Vendor

WordPress

Vendor
CVE Published:
13 July 2026

What is CVE-2026-57811?

The Realtyna Organic IDX plugin is susceptible to a code injection vulnerability, allowing remote attackers to execute arbitrary code. This weakness exists in versions up to 5.2.0 of the plugin, enabling potential unauthorized actions that compromise site security. Users of the Realtyna Organic IDX plugin should take immediate action to update to the latest version and mitigate risks associated with remote code inclusion. Ensure your website is protected by regularly updating and monitoring plugins for vulnerabilities.

Affected Version(s)

Realtyna Organic IDX plugin 0 <= 5.2.0

References

CVSS V3.1

Score:
10
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

ParkHyunWoo | Patchstack Bug Bounty Program
.