EUVD-2024-54452

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

The Motors theme for WordPress allows arbitrary shortcode execution due to improper validation, risking security.

Reporter	Title	Published	Views	Family All 11
Circl	CVE-2024-13738	3 May 202503:00	–	circl
CNNVD	WordPress plugin The Motors - Car Dealer, Rental & Listing 代码注入漏洞	3 May 202500:00	–	cnnvd
CVE	CVE-2024-13738	3 May 202502:21	–	cve
Cvelist	CVE-2024-13738 Motors - Car Dealer, Rental & Listing WordPress theme <= 5.6.65 - Unauthenticated Arbitrary Shortcode Execution	3 May 202502:21	–	cvelist
NVD	CVE-2024-13738	3 May 202503:15	–	nvd
Patchstack	WordPress Motors theme <= 5.6.65 - Unauthenticated Arbitrary Shortcode Execution vulnerability	2 May 202521:04	–	patchstack
Patchstack	WordPress Motors Theme <= 5.6.65 is vulnerable to Content Injection	2 May 202500:00	–	patchstack
Positive Technologies	PT-2025-18937 · WordPress · The Motors – Car Dealer	3 May 202500:00	–	ptsecurity
RedhatCVE	CVE-2024-13738	5 May 202503:02	–	redhatcve
Vulnrichment	CVE-2024-13738 Motors - Car Dealer, Rental & Listing WordPress theme <= 5.6.65 - Unauthenticated Arbitrary Shortcode Execution	3 May 202502:21	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "493697e2-4e8b-3506-92cb-2a891e996a41",
        "vendor": {
          "name": "StylemixThemes"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "83f582fd-36fc-3f8a-b874-57db58446b38",
        "product": {
          "name": "Motors - Car Dealer, Rental & Listing WordPress theme"
        },
        "product_version": "* ≤5.6.65"
      }
    ]
  }
]

Source	Link
wordfence	www.wordfence.com/threat-intel/vulnerabilities/id/4635f5c1-c326-4f53-bc54-a402cf5dae00
stylemixthemes	www.stylemixthemes.com/motors/
themeforest	www.themeforest.net/item/motors-automotive-cars-vehicle-boat-dealership-classifieds-wordpress-theme/13987211

03 Oct 2025 20:07Current

8High risk

Vulners AI Score8

CVSS 3.17.3

EPSS0.0135

SSVC