Browse all 6 CVE security advisories affecting Contempoinc. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Contempoinc develops enterprise collaboration software with a core focus on real-time communication and document sharing. Historically, the organization's products have been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from improper input validation and access control flaws. While no major public security incidents have been widely documented, Contempoinc's six recorded CVEs highlight recurring issues in authentication mechanisms and third-party integrations. The company's security posture appears typical for its sector, with vulnerabilities primarily centered on web application interfaces and API endpoints, requiring ongoing remediation efforts to maintain secure deployment environments.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-39459 | WordPress Real Estate 7 theme <= 3.5.2 - Privilege Escalation vulnerability — Real Estate 7CWE-266 | 7.3 | High | 2025-05-19 |
| CVE-2025-2906 | Contempo Real Estate Core <= 3.6.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode — Contempo Real Estate CoreCWE-79 | 6.4 | Medium | 2025-04-01 |
| CVE-2025-2891 | WP Pro Real Estate 7 <= 3.5.4 - Authenticated (Custom) Arbitrary File Upload — Real Estate 7 WordPressCWE-434 | 8.8 | High | 2025-04-01 |
| CVE-2024-13421 | Real Estate 7 WordPress <= 3.5.1 - Unauthenticated Privilege Escalation to Administrator — Real Estate 7 WordPressCWE-266 | 9.8 | Critical | 2025-02-12 |
| CVE-2022-47146 | WordPress Real Estate 7 Theme <= 3.3.1 is vulnerable to Cross Site Scripting (XSS) — Real Estate 7 WordPressCWE-79 | 7.1 | High | 2023-03-27 |
| CVE-2021-24387 | Real Estate 7 < 3.1.1 - Reflected Cross-Site Scripting (XSS) — WP Pro Real Estate 7CWE-79 | 6.1 | - | 2021-07-06 |
This page lists every published CVE security advisory associated with Contempoinc. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.