Linux Distros Unpatched Vulnerability : CVE-2025-12642

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - lighttpd1.4.80 incorrectly merged trailer fields into headers after http request parsing. This behavior can be exploited to conduct HTTP Header Smuggling attack...

CVE-2025-12642

lighttpd1.4.80 incorrectly merged trailer fields into headers after http request parsing. This behavior can be exploited to conduct HTTP Header Smuggling attacks. Successful exploitation may allow an attacker to: Bypass access control rules Inject unsafe input into backend logic that trusts reque...

CVE-2025-12642

lighttpd1.4.80 incorrectly merged trailer fields into headers after http request parsing. This behavior can be exploited to conduct HTTP Header Smuggling attacks. Successful exploitation may allow an attacker to: Bypass access control rules Inject unsafe input into backend logic that trusts reque...

CVE-2025-54691

Authorization Bypass Through User-Controlled Key vulnerability in Stylemix Motors motors-car-dealership-classified-listings allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Motors: from n/a through = 1.4.80...

CVE-2025-54691

Authorization Bypass Through User-Controlled Key vulnerability in Stylemix Motors motors-car-dealership-classified-listings allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Motors: from n/a through = 1.4.80...

CVE-2025-54691 WordPress Motors Plugin plugin <= 1.4.80 - Insecure Direct Object References (IDOR) Vulnerability

Authorization Bypass Through User-Controlled Key vulnerability in Stylemix Motors motors-car-dealership-classified-listings allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Motors: from n/a through = 1.4.80...

CVE-2025-54691

CVE-2025-54691 is a real vulnerability affecting the WordPress Motors plugin (versions n/a through 1.4.80). The issue is an Insecure Direct Object References (IDOR) that enables an authorization bypass via a user-controlled key, effectively bypassing access control. The CVSSv3.1 vector is CVSS:3....

PT-2025-33243 · Unknown · Stylemix Motors

Name of the Vulnerable Software and Affected Versions: Stylemix Motors versions n/a through 1.4.80 Description: A flaw exists in Stylemix Motors related to incorrectly configured access control security levels, allowing for authorization bypass through a user-controlled key. Recommendations: Upda...

WordPress plugin Motors 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...