Motors

Stylemix

Developer

1.4.107

Latest version

10,000

Installations

No date

Last updated

WordPress Plugin

Active VDP

Report vulnerability

Vulnerabilities

Security Policy

Security Contributors

Vulnerability history

0 present

15 patched

8 Mitigation rules

WordPress Motors - Car Dealer, Classifieds & Listing plugin <= 1.4.57 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Post Deletion and Listing Template Creation vulnerability
<= 1.4.57
31/12/2025
Authenticated (Subscriber+) Arbitrary File Deletion vulnerability
<= 1.4.89
07/10/2025
Insecure Direct Object References (IDOR) Vulnerability
<= 1.4.80
30/07/2025
Local File Inclusion vulnerability
<= 1.4.71
09/04/2025
Missing Authorization to Authenticated (Subscriber+) Wizard Set-up vulnerability
<= 1.4.66
07/04/2025
Missing Authorization to Authenticated (Subscriber+) Arbitrary Plugin Installation vulnerability
<= 1.4.64
07/04/2025
Authenticated (Subscriber+) Stored Cross-Site Scripting vulnerability
<= 1.4.63
07/04/2025
Cross Site Scripting (XSS) vulnerability
<= 1.4.71
04/04/2025
Local File Inclusion vulnerability
<= 1.4.71
04/04/2025
Authenticated (Subscriber+) Arbitrary Shortcode Execution via Custom Title vulnerability
<= 1.4.43
15/01/2025
Missing Authorization vulnerability
<= 1.4.9
02/07/2024
Reflected Cross Site Scripting (XSS) vulnerability
<= 1.4.6
19/10/2023
Server Side Request Forgery (SSRF) vulnerability
<= 1.4.6
19/10/2023
Multiple Cross-Site Request Forgery (CSRF) vulnerabilities
<= 1.4.4
19/04/2023
Multiple security issues
<= 1.4.0
23/09/2019