Lucene search
K

12 matches found

NVD
NVD
added 2 days ago4 views

CVE-2026-27425

Unauthenticated Cross Site Scripting XSS in Automotive Listings = 18.6 versions...

7.1CVSS0.0018EPSS
Exploits0References1
CVE
CVE
added 2 days ago7 views

CVE-2026-27425

CVE-2026-27425 details (normal mode): Unauthenticated, reflected Cross-Site Scripting (XSS) vulnerability affecting WordPress Automotive Listings plugin, versions up to and including 18.6. The issue is due to a reflected XSS flaw in the plugin’s input handling, allowing an attacker to craft a mal...

7.1CVSS5.8AI score0.0018EPSS
Exploits0References1
Cvelist
Cvelist
added 2 days ago30 views

CVE-2026-27425 WordPress Automotive Listings plugin <= 18.6 - Reflected Cross Site Scripting (XSS) vulnerability

Unauthenticated Cross Site Scripting XSS in Automotive Listings = 18.6 versions...

7.1CVSS0.0018EPSS
Exploits0References1
Patchstack
Patchstack
added 5 days ago5 views

WordPress Automotive Listings plugin <= 18.6 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Plugin Automotive Listings versions = 18.6...

7.1CVSS5.8AI score0.0018EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2026/01/10 5:41 a.m.8 views

CVE-2025-67928

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in themesuite Automotive Listings automotive allows Blind SQL Injection.This issue affects Automotive Listings: from n/a through = 18.6...

9.3CVSS5.9AI score0.00289EPSS
Exploits0References1
NVD
NVD
added 2026/01/08 10:15 a.m.4 views

CVE-2025-67928

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in themesuite Automotive Listings automotive allows Blind SQL Injection.This issue affects Automotive Listings: from n/a through = 18.6...

9.3CVSS0.00289EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/01/08 9:17 a.m.3 views

CVE-2025-67928 WordPress Automotive Listings plugin <= 18.6 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in themesuite Automotive Listings automotive allows Blind SQL Injection.This issue affects Automotive Listings: from n/a through = 18.6...

9.3CVSS7.3AI score0.00289EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/01/08 9:17 a.m.24 views

CVE-2025-67928 WordPress Automotive Listings plugin <= 18.6 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in themesuite Automotive Listings automotive allows Blind SQL Injection.This issue affects Automotive Listings: from n/a through = 18.6...

9.3CVSS0.00289EPSS
Exploits0References1
CVE
CVE
added 2026/01/08 9:17 a.m.18 views

CVE-2025-67928

CVE-2025-67928 affects the Automotive Listings plugin/theme. It is an SQL Injection vulnerability (improper neutralization of input) allowing a blind SQL injection in Automotive Listings, potentially impacting the product up to version 18.6. The CVSS 3.1 vector indicates Network attack, with high...

9.3CVSS7.3AI score0.00289EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/01/08 12:0 a.m.4 views

WordPress plugin Automotive Listings 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...

9.3CVSS7.6AI score0.00289EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/01/08 12:0 a.m.4 views

PT-2026-1904

Name of the Vulnerable Software and Affected Versions themesuite Automotive Listings versions n/a through 18.6 Description An issue exists in themesuite Automotive Listings that allows for Blind SQL Injection due to Improper Neutralization of Special Elements used in an SQL Command. This allows a...

9.8CVSS7.9AI score0.00289EPSS
Exploits0References4
Patchstack
Patchstack
added 2026/01/05 12:45 p.m.9 views

WordPress Automotive Listings plugin <= 18.6 - SQL Injection vulnerability

SQL Injection vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Plugin Automotive Listings versions = 18.6...

9.8CVSS8.1AI score0.00289EPSS
Exploits0Affected Software1
Rows per page
Query Builder