Motors
Stylemix
Developer
1.4.112
Latest version
9,000
Installations
No date
Last updated
Vulnerability history
0 present
22 patched
12 Mitigation rules
- Unauthenticated Post-Meta Write via stm_ajax_add_a_car_media vulnerability< 1.4.11016 hours ago
- Broken Access Control vulnerability<= 1.4.1095 days ago
- Local File Inclusion vulnerability<= 1.4.1095 days ago
- SQL Injection vulnerability<= 1.4.1095 days ago
- Authenticated (Subscriber+) Arbitrary File Deletion vulnerability<= 1.4.10714/05/2026
- Missing Authorization to Authenticated (Subscriber+) Payment Bypass vulnerability<= 1.4.10311/05/2026
- Broken Access Control vulnerability< 1.4.10721/04/2026
- WordPress Motors - Car Dealer, Classifieds & Listing plugin <= 1.4.57 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Post Deletion and Listing Template Creation vulnerability<= 1.4.5731/12/2025
- Authenticated (Subscriber+) Arbitrary File Deletion vulnerability<= 1.4.8907/10/2025
- Insecure Direct Object References (IDOR) Vulnerability<= 1.4.8030/07/2025
- Local File Inclusion vulnerability<= 1.4.7109/04/2025
- Missing Authorization to Authenticated (Subscriber+) Wizard Set-up vulnerability<= 1.4.6607/04/2025
- Missing Authorization to Authenticated (Subscriber+) Arbitrary Plugin Installation vulnerability<= 1.4.6407/04/2025
- Authenticated (Subscriber+) Stored Cross-Site Scripting vulnerability<= 1.4.6307/04/2025
- Cross Site Scripting (XSS) vulnerability<= 1.4.7104/04/2025
- Local File Inclusion vulnerability<= 1.4.7104/04/2025
- Authenticated (Subscriber+) Arbitrary Shortcode Execution via Custom Title vulnerability<= 1.4.4315/01/2025
- Missing Authorization vulnerability<= 1.4.902/07/2024
- Reflected Cross Site Scripting (XSS) vulnerability<= 1.4.619/10/2023
- Server Side Request Forgery (SSRF) vulnerability<= 1.4.619/10/2023
- Multiple Cross-Site Request Forgery (CSRF) vulnerabilities<= 1.4.419/04/2023
- Multiple security issues<= 1.4.023/09/2019