Skip to main content

Cars Seller Auto Classifieds Script

1 CVEs product

Monthly

CVE-2021-24285 CRITICAL POC THREAT Act Now

The request_list_request AJAX call of the Car Seller - Auto Classifieds Script WordPress plugin through 2.1.0, available to both authenticated and unauthenticated users, does not sanitise, validate. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

WordPress SQLi Cars Seller Auto Classifieds Script
NVD WPScan
CVSS 3.1
9.8
EPSS
14.7%
EPSS 15% CVSS 9.8
CRITICAL POC THREAT Act Now

The request_list_request AJAX call of the Car Seller - Auto Classifieds Script WordPress plugin through 2.1.0, available to both authenticated and unauthenticated users, does not sanitise, validate. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

WordPress SQLi Cars Seller Auto Classifieds Script
NVD WPScan

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy