includes/options.php in the motors-car-dealership-classified-listings (aka Motors - Car Dealer & Classified Ads) plugin through 1.4.0 for WordPress allows unauthenticated options changes.
References
Link | Resource |
---|---|
https://wordpress.org/plugins/motors-car-dealership-classified-listings/#developers | Release Notes Third Party Advisory |
https://blog.nintechnet.com/multiple-vulnerabilities-in-wordpress-motors-car-dealer-classified-ads-plugin/ | Exploit Third Party Advisory |
https://wpvulndb.com/vulnerabilities/9884 | Third Party Advisory |
Configurations
Configuration 1 (hide)
|
Information
Published : 2020-02-24 11:15
Updated : 2020-02-26 08:55
NVD link : CVE-2019-17228
Mitre link : CVE-2019-17228
JSON object : View
CWE
CWE-345
Insufficient Verification of Data Authenticity
Products Affected
stylemixthemes
- motors_-_car_dealer\,_classifieds_\&_listing