Page 2 of 7 results (0.012 seconds)

CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 1

includes/options.php in the motors-car-dealership-classified-listings (aka Motors - Car Dealer & Classified Ads) plugin through 1.4.0 for WordPress has multiple stored XSS issues. El archivo includes/options.php en el plugin motors-car-dealership-classified-listings (también se conoce como Motors - Car Dealer & Classified Ads) versiones hasta 1.4.0 para WordPress, presenta múltiples problemas de tipo XSS almacenado. • https://blog.nintechnet.com/multiple-vulnerabilities-in-wordpress-motors-car-dealer-classified-ads-plugin https://wordpress.org/plugins/motors-car-dealership-classified-listings/#developers https://wpvulndb.com/vulnerabilities/9884 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1

includes/options.php in the motors-car-dealership-classified-listings (aka Motors - Car Dealer & Classified Ads) plugin through 1.4.0 for WordPress allows unauthenticated options changes. El archivo includes/options.php en el plugin motors-car-dealership-classified-listings (también se conoce como Motors - Car Dealer & Classified Ads) versiones hasta 1.4.0 para WordPress, permite cambios de opciones no autenticados. includes/options.php in the motors-car-dealership-classified-listings (aka Motors - Car Dealer & Classified Ads) plugin through 1.4.0 for WordPress allows unauthenticated plugin settings changes, including the ability to add malicious JavaScript to a site. • https://blog.nintechnet.com/multiple-vulnerabilities-in-wordpress-motors-car-dealer-classified-ads-plugin https://wordpress.org/plugins/motors-car-dealership-classified-listings/#developers https://wpvulndb.com/vulnerabilities/9884 • CWE-345: Insufficient Verification of Data Authenticity •