cleantalk
Vulnerabilities and Security Researches

CarDealerPress, CVE-2024-54325

CVE, Research URL

CVE-2024-54325

Home page URL

Security reports for CarDealerPress

Application

CarDealerPress

Published on
Dec 13, 2024
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in DealerTrend CarDealerPress allows Reflected XSS.This issue affects CarDealerPress: from n/a through 6.6.2410.02.
Affected versions
Min -, max 6.6.2410.02.
Status
vulnerable
Previous vulnerability researches
CarDealerPress (CVE-2025-3860) , May 08, 2025
CarDealerPress (CVE-2024-54325) , Dec 15, 2024
New vulnerability
Blocksy (CVE-2025-47465) , May 08, 2025
Ultimate Blocks – WordPress Blocks Plugin (CVE-2025-47493) , May 08, 2025
Poll Maker – Best WordPress Poll Plugin (CVE-2025-47545) , May 08, 2025
Advanced File Manager (CVE-2025-47688) , May 08, 2025
WPAdverts – Classifieds Plugin (CVE-2025-47440) , May 08, 2025