Medium 6.5 Unfixed
2025-12-18≤ 2.9.9
CVE-2025-63039
ListingPro
Minimum safe version
2.9.10
Update to 2.9.10 or later to address 16 fixable vulnerabilities
Latest available2.6.12 ✗⚠ 5 vulnerabilities have no fix
High 7.1
2025-12-18< 2.9.10
CVE-2025-64376
High 8.1
2025-12-18< 2.9.10
CVE-2025-64377
High 7.1
2025-12-18< 2.9.10
CVE-2025-64378
Medium 5.3 Unfixed
2025-12-09≤ 2.9.9
CVE-2025-63047
Critical 9.3 Unfixed
2024-08-29≤ 2.9.3
CVE-2024-39622
High 8.8 Unfixed
2025-01-02≤ 2.9.3
CVE-2024-39623
High 8.5 Unfixed
2024-08-01≤ 2.9.3
CVE-2024-39624
N/A
< 2.5.4
ListingPro < 2.5.4 - Unauthenticated Reflected Cross-Site Scripting
Medium 5.3
2023-06-07< 2.6.1
CVE-2020-36723
Critical 9.8
2023-06-07< 2.6.1
CVE-2020-36719
N/A
2020-01-15< 2.5.4
ListingPro - WordPress Directory & Listing Theme < 2.5.4 - Cross-Site Scripting
N/A
2020-12-17< 2.6.1
ListingPro - WordPress Directory & Listing Theme < 2.6.1 - Sensitive Information Disclosure
N/A
2020-12-17< 2.6.1
ListingPro - WordPress Directory & Listing Theme < 2.6.1 - Arbitrary Plugin Installation, Activation and Deactivation
N/A
2019-12-13< 2.0.14.5
WordPress ListingPro premium theme <= 2.0.14.2 - Reflected & Persistent Cross-Site Scripting (XSS) vulnerability
N/A
2020-01-15< 2.5.4
WordPress ListingPro premium theme <= 2.5.3 - Unauthenticated Reflected Cross-Site Scripting (XSS) vulnerability
N/A
2020-12-17< 2.6.1
WordPress ListingPro theme <= 2.6 - Unauthenticated Sensitive Data Disclosure (Usernames, Emails etc) vulnerability
N/A
2020-12-17< 2.6.1
WordPress ListingPro theme <= 2.6 - Unauthenticated Arbitrary Plugin Installation/Activation/Deactivation vulnerability
Medium 5.4
2019-12-26< 2.0.14.5
CVE-2019-19542
Medium 5.4
2019-12-26< 2.0.14.5
CVE-2019-19541
Medium 6.1
2019-12-26< 2.0.14.5
CVE-2019-19540