CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2019-17228

MEDIUM
6.5
CVSS Severity Score
EPSS Score0.1910%
EPSS Percentile31.20th
Published2020年2月24日
Last Modified2024年11月21日

Vulnerability Description

includes/options.php in the motors-car-dealership-classified-listings (aka Motors - Car Dealer & Classified Ads) plugin through 1.4.0 for WordPress allows unauthenticated options changes.

Affected Platforms (CPE)

📦
Stylemixthemes

Motors Car Dealer\, Classifieds \& Listing

<= 1.4.0

References & Advisories

🔗 https://blog.nintechnet.com/multiple-vulnerabilities-in-wordpress-motors-car-dealer-classified-ads-plugin/
🔗 https://wordpress.org/plugins/motors-car-dealership-classified-listings/#developers
🔗 https://wpvulndb.com/vulnerabilities/9884
🔗 https://blog.nintechnet.com/multiple-vulnerabilities-in-wordpress-motors-car-dealer-classified-ads-plugin/
🔗 https://wordpress.org/plugins/motors-car-dealership-classified-listings/#developers
🔗 https://wpvulndb.com/vulnerabilities/9884

相關漏洞威脅

CVE-2019-172296.1

includes/options.php in the motors-car-dealership-classified-listings (aka Motors - Car Dealer & Classified Ads) plugin through 1....

CVE-2019-390510.0

Zoho ManageEngine ADSelfService Plus 5.x before build 5703 has SSRF.

CVE-2019-1068610.0

An SSRF vulnerability was found in an API from Ctrip Apollo through 1.4.0-SNAPSHOT. An attacker may use it to do an intranet port ...

CVE-2019-760910.0

Kibana versions before 5.6.15 and 6.6.1 contain an arbitrary code execution flaw in the Timelion visualizer. An attacker with acce...