CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 1CVE-2019-17229 – Motors – Car Dealer, Classifieds & Listing <= 1.4.0 - Stored Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2019-17229
includes/options.php in the motors-car-dealership-classified-listings (aka Motors - Car Dealer & Classified Ads) plugin through 1.4.0 for WordPress has multiple stored XSS issues. El archivo includes/options.php en el plugin motors-car-dealership-classified-listings (también se conoce como Motors - Car Dealer & Classified Ads) versiones hasta 1.4.0 para WordPress, presenta múltiples problemas de tipo XSS almacenado. • https://blog.nintechnet.com/multiple-vulnerabilities-in-wordpress-motors-car-dealer-classified-ads-plugin https://wordpress.org/plugins/motors-car-dealership-classified-listings/#developers https://wpvulndb.com/vulnerabilities/9884 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2019-17228 – Motors Car Dealer & Classified Ads <= 1.4.0 - Unauthenticated Settings Import/Export
https://notcve.org/view.php?id=CVE-2019-17228
includes/options.php in the motors-car-dealership-classified-listings (aka Motors - Car Dealer & Classified Ads) plugin through 1.4.0 for WordPress allows unauthenticated options changes. El archivo includes/options.php en el plugin motors-car-dealership-classified-listings (también se conoce como Motors - Car Dealer & Classified Ads) versiones hasta 1.4.0 para WordPress, permite cambios de opciones no autenticados. includes/options.php in the motors-car-dealership-classified-listings (aka Motors - Car Dealer & Classified Ads) plugin through 1.4.0 for WordPress allows unauthenticated plugin settings changes, including the ability to add malicious JavaScript to a site. • https://blog.nintechnet.com/multiple-vulnerabilities-in-wordpress-motors-car-dealer-classified-ads-plugin https://wordpress.org/plugins/motors-car-dealership-classified-listings/#developers https://wpvulndb.com/vulnerabilities/9884 • CWE-345: Insufficient Verification of Data Authenticity •