3 matches found
CVE-2024-5545 Motors – Car Dealer, Classifieds & Listing <= 1.4.9 - Missing Authorization
The Motors – Car Dealer, Classifieds & Listing plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the stmeditdeleteusercar function in all versions up to, and including, 1.4.8. This makes it possible for unauthenticated attackers to...
CVE-2024-5545 Motors – Car Dealer, Classifieds & Listing <= 1.4.9 - Missing Authorization
The Motors – Car Dealer, Classifieds & Listing plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the stmeditdeleteusercar function in all versions up to, and including, 1.4.8. This makes it possible for unauthenticated attackers to...
WordPress Motors – Car Dealer & Classified Ads Plugin <= 1.4.9 is vulnerable to Broken Access Control
Software Motors – Car Dealer & Classified Ads Type Plugin Vulnerable versions = 1.4.9 Fixed in 1.4.11 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-5545 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID dfa39be1a058 Credits Krzyszto...