Vulnerabilities > Stylemixthemes > Motors CAR Dealer Classifieds Listing > High

DATE	CVE	VULNERABILITY TITLE	RISK
2023-11-13	CVE-2023-46207	Server-Side Request Forgery (SSRF) vulnerability in Stylemixthemes Motors - CAR Dealer, Classifieds & Listing Server-Side Request Forgery (SSRF) vulnerability in StylemixThemes Motors – Car Dealer, Classifieds & Listing.This issue affects Motors – Car Dealer, Classifieds & Listing: from n/a through 1.4.6. network low complexity stylemixthemes CWE-918	7.5
2023-05-25	CVE-2022-38716	Unspecified vulnerability in Stylemixthemes Motors - CAR Dealer, Classifieds & Listing Cross-Site Request Forgery (CSRF) vulnerability in StylemixThemes Motors – Car Dealer, Classifieds & Listing plugin <= 1.4.4 versions. network low complexity stylemixthemes	8.8
2022-12-12	CVE-2022-3989	Unspecified vulnerability in Stylemixthemes Motors - CAR Dealer, Classifieds & Listing The Motors WordPress plugin before 1.4.4 does not properly validate uploaded files for dangerous file types (such as .php) in an AJAX action, allowing an attacker to sign up on a victim's WordPress instance, upload a malicious PHP file and attempt to launch a brute-force attack to discover the uploaded payload. network low complexity stylemixthemes	8.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.