Motors Car Dealer & Classified Ads < 1.4.1 - Multiple Issues



Description
- Unauthenticated plugin's settings import/export (leading to stored XSS)
- Authenticated settings import
- Unsanitised inputs
- Authenticated options change

Affects Plugin

References

URL https://blog.nintechnet.com/multiple-vulnerabilities-in-wordpress-motors-car-dealer-classified-ads-plugin/

Classification

Type MULTI

Miscellaneous

Original Researcher Jerome Bruandet
Views 3865
Verified No
WPVDB ID 9884

Timeline

Publicly Published 2019-09-20 (about 1 month ago)
Added 2019-09-20 (about 1 month ago)
Last Updated 2019-09-20 (about 1 month ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin