Vulnerabilities > CVE-2023-46207 - Server-Side Request Forgery (SSRF) vulnerability in Stylemixthemes Motors - CAR Dealer, Classifieds & Listing

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

network

low complexity

stylemixthemes

CWE-918

NVD

Published: 2023-11-13

Updated: 2023-11-16

Summary

Server-Side Request Forgery (SSRF) vulnerability in StylemixThemes Motors – Car Dealer, Classifieds & Listing.This issue affects Motors – Car Dealer, Classifieds & Listing: from n/a through 1.4.6.

Vulnerable Configurations

Part	Description	Count
Application	Stylemixthemes Stylemixthemes Motors CAR Dealer, Classifieds & Listing 1.0 Stylemixthemes Motors CAR Dealer, Classifieds & Listing 1.1 Stylemixthemes Motors CAR Dealer, Classifieds & Listing 1.2 Stylemixthemes Motors CAR Dealer, Classifieds & Listing 1.3 Stylemixthemes Motors CAR Dealer, Classifieds & Listing 1.3.1 Stylemixthemes Motors CAR Dealer, Classifieds & Listing 1.3.3 Stylemixthemes Motors CAR Dealer, Classifieds & Listing 1.3.4 Stylemixthemes Motors CAR Dealer, Classifieds & Listing 1.3.5 Stylemixthemes Motors CAR Dealer, Classifieds & Listing 1.3.6 Stylemixthemes Motors CAR Dealer, Classifieds & Listing 1.3.7 Stylemixthemes Motors CAR Dealer, Classifieds & Listing 1.3.8 Stylemixthemes Motors CAR Dealer, Classifieds & Listing 1.3.9 Stylemixthemes Motors CAR Dealer, Classifieds & Listing 1.4.0 Stylemixthemes Motors CAR Dealer, Classifieds & Listing 1.4.3 Stylemixthemes Motors CAR Dealer, Classifieds & Listing 1.4.4	15

Common Weakness Enumeration (CWE)

CWE-918 - Server-Side Request Forgery (SSRF)

References

https://patchstack.com/database/vulnerability/motors-car-dealership-classified-listings/wordpress-motors-car-dealer-classifieds-listing-plugin-1-4-6-server-side-request-forgery-ssrf-vulnerability?_s_id=cve