CVE-2025-5239

<p><strong>Domain For Sale</strong> is a WordPress plugin that lets you create professional <strong>domain for sale landing pages</strong> and sell unused domains directly from your website. Accept offers and inquiries, manage negotiations, and handle domain sales entirely from your WordPress dashboard—without relying on third-party marketplaces.</p> <p>With this plugin, you can showcase domains using customizable landing page templates and built-in offer forms. Buyers can submit offers or inquiries directly, while you manage all submissions from a centralized <strong>offer management dashboard</strong> inside WordPress. Perfect for domain investors who want full control over offers, negotiations, and buyer communication in one place.</p> <p>Each offer includes detailed buyer information such as contact details, proposed amount, message, and submission context, helping you evaluate leads with confidence. Automatic email notifications keep both admins and buyers informed at every stage, with customizable templates for a professional sales experience.</p> <p>Use the plugin as a full domain sale theme replacement or embed listings anywhere using shortcodes. It works with any WordPress theme and supports Gutenberg, Elementor, and popular page builders. Fully responsive layouts ensure your sale pages look great on all devices.</p> <p>Designed for domain investors, agencies, and website owners, this tool offers a simple interface for beginners and flexible customization options for advanced users. Regular updates, multisite support, and clear documentation make it easy to manage multiple listings at scale.</p> <p>Turn your unused domains into opportunities with <strong>Domain For Sale</strong> — a flexible WordPress plugin to sell domains with landing pages, offers, and inquiries.</p> <p><strong>👁️<a href="https://wpdomainforsale.com/#demo" rel="nofollow ugc">Plugin Demo</a> | 🚀<a href="https://wpdomainforsale.com/" rel="nofollow ugc">Pro Version</a> | 📖<a href="https://wpdomainforsale.com/docs/" rel="nofollow ugc">Documentation</a> | 👩🏼‍💻<a href="https://wordpress.org/support/plugin/domain-for-sale/" rel="ugc">Support</a> | 🌟<a href="https://wordpress.org/support/plugin/domain-for-sale/reviews/#new-post" rel="ugc">Rate this plugin</a></strong></p> <h3>Video demo</h3> <span class="embed-youtube" style="text-align:center; display: block;"><iframe loading="lazy" class="youtube-player" width="750" height="422" src="https://www.youtube.com/embed/jnYCZffVfDk?version=3&#038;rel=1&#038;showsearch=0&#038;showinfo=1&#038;iv_load_policy=1&#038;fs=1&#038;hl=en-US&#038;autohide=2&#038;wmode=transparent" allowfullscreen="true" style="border:0;" sandbox="allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox"></iframe></span> <h3>Key Features:</h3> <ul> <li> <p><strong>Domain Listing &amp; Showcase</strong> – Showcase multiple domains using elegant layouts with powerful customization options.</p> </li> <li> <p><strong>Landing Pages</strong> – Create professional landing pages for individual domains. These pages can also be used as single pages when domains are displayed in listings.</p> </li> <li> <p><strong>Unlimited Templates</strong> – Create and manage unlimited sale templates using a dedicated custom post type.</p> </li> <li> <p><strong>Bulk Import (CSV, XML, JSON)</strong> – Upload multiple domains at once and manage large portfolios easily.</p> </li> <li> <p><strong>Flexible Display Options</strong> – Use the plugin as a full theme replacement or embed sale pages anywhere using shortcodes.</p> </li> <li> <p><strong>Built-in Offer &amp; Inquiry Form</strong> – Allow buyers to submit offers and inquiries directly from your sale pages.</p> </li> <li> <p><strong>Centralized Offer Management Dashboard</strong> – View, search, filter, and manage all incoming submissions from one place inside WordPress.</p> </li> <li> <p><strong>Detailed Offer &amp; Buyer Information</strong> – Each offer includes buyer name, email, phone number, proposal message, domain name, date, and submission context.</p> </li> <li> <p><strong>Automatic Admin Email Notifications</strong> – Receive instant email notifications when a new offer or inquiry is submitted.</p> </li> <li> <p><strong>Bidder Confirmation Emails</strong> – Automatically send confirmation emails to buyers after they submit an offer.</p> </li> <li> <p><strong>Customizable Email Templates</strong> – Customize admin and bidder email subjects and messages using dynamic tags such as <code>{domain}</code>, <code>{name}</code>, <code>{email}</code>, <code>{phone}</code>, <code>{offer}</code>, <code>{proposal}</code>, <code>{date}</code>, <code>{siteTitle}</code>, <code>{currentURL}</code>.</p> </li> <li> <p><strong>Price Display Options</strong> – Display prices using dynamic placeholders like <code>{price}</code> or <code>{{price}}</code>.</p> </li> <li> <p><strong>Currency Selection</strong> – Choose your preferred currency for displaying prices.</p> </li> <li> <p><strong>Responsive &amp; Mobile-Friendly Design</strong> – Sale pages automatically adapt to desktops, tablets, and mobile devices.</p> </li> <li> <p><strong>Pre-Designed Layouts</strong> – Choose from ready-made layouts to quickly launch professional pages.</p> </li> <li> <p><strong>Advanced Design Controls</strong> – Customize container width, column spacing, background images, overlays, and color schemes without coding.</p> </li> <li> <p><strong>Typography Controls</strong> – Control fonts, sizes, colors, line height, and text styles for names, titles, content, and forms.</p> </li> <li> <p><strong>Multiple Color Schemes</strong> – Select from predefined color schemes to match your brand instantly.</p> </li> <li> <p><strong>Custom Contact Information Blocks</strong> – Add multiple contact details such as email addresses and phone numbers with icons.</p> </li> <li> <p><strong>AJAX-Powered Forms</strong> – Fast, smooth form submissions without page reloads.</p> </li> <li> <p><strong>Custom Success &amp; Error Messages</strong> – Customize form success messages, error messages, and button labels.</p> </li> <li> <p><strong>Custom CSS &amp; JavaScript Panels</strong> – Add your own CSS or JavaScript directly from the plugin settings.</p> </li> <li> <p><strong>SEO-Friendly Structure</strong> – Clean markup and lightweight output designed to work well with SEO plugins.</p> </li> <li> <p><strong>Page Builder Compatibility</strong> – Works seamlessly with Gutenberg, Elementor, Classic Editor, WPBakery, Divi, Beaver Builder, Bricks, Oxygen, and more.</p> </li> <li> <p><strong>Theme-Agnostic</strong> – Compatible with all WordPress themes including Astra, Blocksy, Kadence, Neve, OceanWP, Avada, and Divi.</p> </li> <li> <p><strong>Multilingual &amp; RTL Ready</strong> – Translation-ready and compatible with WPML, Polylang, Loco Translate, and RTL languages.</p> </li> <li> <p><strong>Multisite Compatible</strong> – Fully functional in WordPress Multisite environments.</p> </li> <li> <p><strong>Import &amp; Export Domains (CSV, XML, JSON)</strong> – Easily upload and download domain data in bulk.</p> </li> <li> <p><strong>Import &amp; Export Listings (CSV, XML, JSON)</strong> – Transfer and manage listing data across websites.</p> </li> <li> <p><strong>Settings Import &amp; Export (JSON)</strong> – Backup and restore plugin settings quickly.</p> </li> <li> <p><strong>No Coding Required</strong> – Beginner-friendly UI—install, activate, create a template, and start receiving offers.</p> </li> <li> <p><strong>Developer-Friendly Architecture</strong> – Clean, extensible codebase suitable for customization and advanced use cases.</p> </li> <li> <p><strong>Cross-Browser Compatibility</strong> – Works smoothly on Chrome, Firefox, Safari, Edge, and Opera.</p> </li> <li> <p><strong>Comprehensive Documentation</strong> – Step-by-step guides and tutorials for easy setup and usage.</p> </li> <li> <p><strong>Regular Updates &amp; Active Support</strong> – Ongoing improvements, security updates, and responsive support.</p> </li> </ul> <h3>Other plugins by ThemeAtelier</h3> <ul> <li><a href="https://wordpress.org/plugins/darkify/" rel="ugc">Darkify Dark Mode</a> &#8211; Lightweight, customizable WordPress dark mode plugin for a sleek, accessible, and eye-friendly experience.</li> <li><a href="https://wordpress.org/plugins/chat-help/" rel="ugc">WhatsApp Chat Help</a> &#8211; A flexible WhatsApp chat plugin that helps website visitors start instant conversations with you directly from your site.</li> <li><a href="https://wordpress.org/plugins/eventful/" rel="ugc">Eventful – Events Showcase and Filter Bar</a> &#8211; An event display plugin for The Events Calendar that helps you showcase events in clean, modern, responsive layouts.</li> <li><a href="https://wordpress.org/plugins/greet-bubble/" rel="ugc">Greet – Video Bubble Warm Welcome Plugin</a> &#8211; A video welcome bubble plugin that helps you greet visitors warmly and provide quick contact options.</li> <li><a href="https://wordpress.org/plugins/eventful-for-elementor/" rel="ugc">Eventful for Elementor</a> &#8211; An Elementor addon for The Events Calendar that lets you design and display events using Elementor widgets.</li> <li><a href="https://wordpress.org/plugins/better-chat-support/" rel="ugc">Better Chat Support For Messenger</a> &#8211; A Facebook Messenger chat plugin that allows visitors to contact you instantly through Messenger.</li> </ul> <h3>External services</h3> <p>This plugin connects to the following external services. Each service is described below, including what data is sent and when.</p> <p><strong>ipwhois.app API</strong></p> <p>We use the ipwhois.app API to detect visitor location to personalize the message and offer form on sale pages.</p> <ul> <li>Data sent: The visitor&#8217;s IP address.</li> <li>Data received: Public geolocation information based on IP, such as country, city, timezone, ISP/organization, and approximate latitude/longitude.</li> <li>When: On page load when a Domain For Sale page is displayed to a visitor.</li> <li>Service provider: ipwhois.app — <a href="https://ipwhois.io/terms" rel="nofollow ugc">Terms</a> | <a href="https://ipwhois.io/privacy" rel="nofollow ugc">Privacy Policy</a></li> </ul> <p>Example response includes publicly available location data like country and city — no personal account information is collected.</p> <p><strong>Appsero SDK</strong></p> <p>Domain For Sale uses the <a href="https://appsero.com" rel="nofollow ugc">Appsero</a> SDK to collect basic telemetry data, but only after the user explicitly opts in via an admin notice.</p> <ul> <li>Data sent: Basic site and plugin telemetry (only after user confirmation).</li> <li>When: Only after the user explicitly allows it via the admin notice. The SDK does not gather any data by default.</li> <li>Service provider: Appsero — <a href="https://appsero.com/privacy-policy/" rel="nofollow ugc">Privacy Policy</a></li> </ul> <p>Integrating the Appsero SDK does NOT immediately start gathering data without user confirmation in any case.</p>