ThreatPress

WordPress Vulnerabilities Database

Back

WordPress CarSpot theme <= 2.2.0 - Multiple Vulnerabilities (Authenticated Persistent XSS & IDOR)

Product
CarSpot
Description
Multiple Vulnerabilities (Authenticated Persistent XSS & IDOR) found by m0ze in WordPress CarSpot theme (versions <= 2.2.0).
Solution
Update the WordPress CarSpot theme to the latest available version (at least 2.2.1).
Classification
Type Multi
References
Theme changelog
CVE
Name CVE-N/A
Versions
Affected In <= 2.2.0
Fixed In 2.2.1
Disclosure date
2020-01-27
Credits
m0ze
Submitter
ThreatPress