CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2025-1681 – Cardealer <= 1.6.4 - Missing Authorization to Authenticated (Subscriber+) Change and Delete JS and CSS Files
https://notcve.org/view.php?id=CVE-2025-1681
27 Feb 2025 — The Cardealer theme for WordPress is vulnerable to unauthorized modification of data and loss of data due to a missing capability check and missing filename sanitization on the demo theme scheme AJAX functions in versions up to, and including, 1.6.4. This makes it possible for authenticated attackers, with subscriber-level access and above, to change or delete arbitrary css and js files. • https://themeforest.net/item/car-dealer-automotive-wordpress-theme-responsive/8574708 • CWE-862: Missing Authorization •
CVSS: 9.0EPSS: 0%CPEs: 1EXPL: 0CVE-2025-1682 – Cardealer <= 1.6.4 - Arbitrary Theme Option Update to Authenticated (Subscriber+) Privilege Escalation
https://notcve.org/view.php?id=CVE-2025-1682
27 Feb 2025 — The Cardealer theme for WordPress is vulnerable to privilege escalation in versions up to, and including, 1.6.4 due to missing capability check on the 'save_settings' function. This makes it possible for authenticated attackers, with subscriber-level access and above, to modify the default user role. • https://themeforest.net/item/car-dealer-automotive-wordpress-theme-responsive/8574708 • CWE-862: Missing Authorization •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2025-1687 – Cardealer <= 1.6.4 - Cross-Site Request Forgery to User Update via update_user_profile
https://notcve.org/view.php?id=CVE-2025-1687
27 Feb 2025 — The Cardealer theme for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.6.4. This is due to missing nonce validation on the 'update_user_profile' function. This makes it possible for unauthenticated attackers to update the user email and password via a forged request, granted they can trick a site administrator into performing an action such as clicking on a link. • https://themeforest.net/item/car-dealer-automotive-wordpress-theme-responsive/8574708 • CWE-352: Cross-Site Request Forgery (CSRF) •
CVSS: 9.0EPSS: 0%CPEs: 1EXPL: 0CVE-2025-1282 – Car Dealer Automotive WordPress Theme – Responsive <= 1.6.3 - Authenticated (Subscriber+) Arbitrary File Deletion and Read
https://notcve.org/view.php?id=CVE-2025-1282
26 Feb 2025 — The Car Dealer Automotive WordPress Theme – Responsive theme for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the delete_post_photo() and add_car() functions in all versions up to, and including, 1.6.3. This makes it possible for authenticated attackers, with Subscriber-level access and above, to delete arbitrary files on the server, which can easily lead to remote code execution when the right file is deleted (such as wp-config.php). The add_car() function ... • https://themeforest.net/item/car-dealer-automotive-wordpress-theme-responsive/8574708?s_rank=7 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •