Does Realtyna Core have any unpatched vulnerabilities?

No. All known vulnerabilities in Realtyna Core have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Realtyna Core compatible with WordPress 6.5.8?

According to WordPress.org data, Realtyna Core 1.5.0 has been tested up to WordPress 6.5.8. Check the plugin's changelog for the latest compatibility information.

How often is Realtyna Core updated?

Realtyna Core was last updated on Apr 17, 2024. Frequent updates are generally a positive security signal.

What is Realtyna Core's security score?

Realtyna Core has a WP-Safety security score of 92/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Realtyna Core Security & Risk Analysis

wordpress.org/plugins/realtyna-core

Realtyna Core plugin that adds some functionality to Realtyna Sesame Theme.

200 active installs v1.5.0 PHP + WP 5.0.0+ Updated Apr 17, 2024

real-estaterealtynawpl

A · Safe

CVEs total0

Unpatched0

Last CVENever

Download

Safety Verdict

Is Realtyna Core Safe to Use in 2026?

Generally Safe

Score 92/100

Realtyna Core has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1yr ago

Risk Assessment

The realtyna-core plugin v1.5.0 exhibits a generally good security posture based on the static analysis. There are no identified dangerous functions, and all SQL queries utilize prepared statements, which is excellent. The plugin also has a clean vulnerability history with zero recorded CVEs, suggesting a strong track record of secure development.

However, there are significant concerns regarding output escaping. With 58% of outputs properly escaped, a substantial portion (42%) remains unescaped. This could lead to Cross-Site Scripting (XSS) vulnerabilities if user-supplied data is directly outputted without sanitization. Furthermore, the absence of nonce checks and capability checks on any entry points, while the attack surface is small, is a notable weakness. This could potentially allow unauthorized actions if an attacker can trigger the shortcode without proper authorization.

In conclusion, while the plugin demonstrates strengths in SQL handling and has no known historical vulnerabilities, the high percentage of unescaped output and the lack of authorization checks on its single entry point (shortcode) present tangible security risks that require attention.

Key Concerns

Unescaped output percentage is high
No nonce checks on entry points
No capability checks on entry points

Vulnerabilities

None known

Realtyna Core Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Realtyna Core Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

437

594 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

58% escaped1031 total outputs

Attack Surface

Realtyna Core Attack Surface

Entry Points1

Unprotected0

Shortcodes 1

[testimonials] app\includes\testimonial.php:26

WordPress Hooks 24

actionelementor/widgets/widgets_registeredapp\includes\elementor.php:21

actioninitapp\includes\html.php:20

actionplugins_loadedapp\includes\i18n.php:26

filterpt-ocdi/import_filesapp\includes\ocdi\sesame.php:23

filterpt-ocdi/register_pluginsapp\includes\ocdi\sesame.php:26

actionpt-ocdi/before_widgets_importapp\includes\ocdi\sesame.php:29

actionpt-ocdi/after_importapp\includes\ocdi\sesame.php:32

actionpt-ocdi/after_importapp\includes\ocdi\sesame.php:33

actionpt-ocdi/after_importapp\includes\ocdi\sesame.php:34

filterpt-ocdi/plugin_page_setupapp\includes\ocdi\sesame.php:37

filterpt-ocdi/plugin_intro_textapp\includes\ocdi\sesame.php:40

filterpt-ocdi/plugin_page_titleapp\includes\ocdi\sesame.php:41

filterupload_mimesapp\includes\redux.php:22

actionadmin_menuapp\includes\sidebar\generator.php:22

actioninitapp\includes\sidebar\generator.php:23

actioninitapp\includes\sidebar\generator.php:24

actionadmin_headapp\includes\sidebar\generator.php:25

actionadmin_headapp\includes\sidebar\generator.php:27

actionadmin_footerapp\includes\sidebar\generator.php:28

filtermanage_edit-realtyna-core-sidebars_columnsapp\includes\sidebar\generator.php:30

actioninitapp\includes\testimonial.php:22

actionadd_meta_boxesapp\includes\testimonial.php:23

actionsave_postapp\includes\testimonial.php:24

filterwidget_textapp\includes\testimonial.php:27

Maintenance & Trust

Realtyna Core Maintenance & Trust

Maintenance Signals

WordPress version tested6.5.8

Last updatedApr 17, 2024

PHP min version

Downloads12K

Community Trust

Rating0/100

Number of ratings0

Active installs200

Alternatives

Realtyna Core Alternatives

Realtyna Provisioning

realtyna-provisioning

Install WPL packages on your Real Estate website.

300 1 CVE

FV Flowplayer Video Player

fv-wordpress-flowplayer

WordPress's most reliable, easy to use and feature-rich video player. Supports responsive design, HTML5, playlists, ads, stats, Vimeo and YouTube.

20K 23 CVEs

Estatik Real Estate Plugin

estatik

You will love its clean design, simple use, and colorful themes. WordPress real estate plugin Estatik is a worthy choice for single agents and portals

10K 2 unpatched

WP VR – 360 Panorama and Free Virtual Tour Builder For WordPress

wpvr

Create stunning 360 virtual tours to impress visitors and get more clients using WPVR - the easiest virtual tour creator in WordPress.

10K 14 CVEs

Essential Real Estate

essential-real-estate

Completely plugins Real Estate. Management system which allows you to own and maintain a real estate marketplace, intro website.

8K 3 unpatched

Developer Profile

Realtyna Core Developer Profile

Realtyna

3 plugins · 3K total installs

trust score

Avg Security Score

90/100

Avg Patch Time

47 days

View full developer profile

Detection Fingerprints

How We Detect Realtyna Core

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/realtyna-core/app/includes/elementor/tmpl/two.php

HTML / DOM Fingerprints

CSS Classes

re-carousel-itemsstyle-twore-testimonial-containerratingfa-staractivere-contentre-testimonial-content+4 more

HTML Comments

no direct access set params get image params show tags +3 more

Data Attributes

data-srclazyimg

JS Globals

window.sesame_optio

Shortcode Output

<div class="owl-testimonials owl-carousel owl-theme"><div class="item"><img class="post_thumb"<h2>

FAQ