Approved changes feed: RSS · Atom

cpe:2.3:a:stylemix:motors:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorStylemix (c2170171-f70b-5bf4-89aa-da5048b14251)
ProductMotors (f09dd378-dfae-57e8-90c4-85a39d5bc6e7)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2025-54691 vulnerable 2026-06-08 07:33:13.073385 WordPress Motors Plugin plugin <= 1.4.80 - Insecure Direct Object References (IDOR) Vulnerability
MEDIUM (5.3)
Authorization Bypass Through User-Controlled Key vulnerability in Stylemix Motors motors-car-dealership-classified-listings allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Motors: from n/a through <= 1.4.80.
Published: 2025-08-14T10:34:50.849Z
Updated: 2026-04-28T16:13:35.044Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2025-32654 vulnerable 2026-06-08 07:19:00.363021 WordPress Motors plugin <= 1.4.71 - Local File Inclusion vulnerability
HIGH (8.1)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Stylemix Motors motors-car-dealership-classified-listings allows PHP Local File Inclusion.This issue affects Motors: from n/a through <= 1.4.71.
Published: 2025-04-11T08:43:01.943Z
Updated: 2026-04-28T16:12:26.535Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2025-32170 vulnerable 2026-06-08 07:18:59.258511 WordPress Motors plugin <= 1.4.71 - Cross Site Scripting (XSS) vulnerability
MEDIUM (6.5)
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Stylemix Motors motors-car-dealership-classified-listings allows Stored XSS.This issue affects Motors: from n/a through <= 1.4.71.
Published: 2025-04-04T15:58:50.839Z
Updated: 2026-04-28T16:12:18.191Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2025-32142 vulnerable 2026-06-08 07:18:59.213702 WordPress Motors plugin <= 1.4.71 - Local File Inclusion vulnerability
HIGH (8.8)
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Stylemix Motors motors-car-dealership-classified-listings allows PHP Local File Inclusion.This issue affects Motors: from n/a through <= 1.4.71.
Published: 2025-04-04T15:58:33.712Z
Updated: 2026-04-28T16:12:17.032Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.