Merv Barrett · Easy Property Listings · CVE-2020-5530
**Name of the Vulnerable Software and Affected Versions**
Easy Property Listings versions prior to 3.4
**Description**
A cross-site request forgery issue allows remote attackers to hijack the authentication of administrators. The attack vector is not specified.
**Recommendations**
For versions prior to 3.4, update to version 3.4 or later to resolve the issue. As a temporary workaround, consider implementing additional authentication checks to minimize the risk of exploitation. Restrict access to administrative functions to minimize the risk of CSRF attacks until the issue is resolved.