cleantalk
Vulnerabilities and Security Researches

Motors – Car Dealer, Classifieds & Listing, CVE-2025-32654

CVE, Research URL

CVE-2025-32654

Home page URL

Security reports for Motors – Car Dealer, Classifieds & Listing

Application

Motors – Car Dealer, Classifieds & Listing

Published on
Apr 11, 2025
Research Description
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Stylemix Motors allows PHP Local File Inclusion. This issue affects Motors: from n/a through 1.4.65.
Affected versions
Min -, max 1.4.67.
Status
vulnerable
Previous vulnerability researches
Swiss Toolkit For WP (CVE-2025-31546) , Apr 03, 2025
Swiss Toolkit For WP (CVE-2025-31544) , Apr 03, 2025
Swiss Toolkit For WP (CVE-2024-5204) , Jun 07, 2024
New vulnerability
WP-Hijri (CVE-2025-32560) , Apr 14, 2025
Download Manager and Payment Form WordPress Plugin – WP SmartPay (CVE-2025-32689) , Apr 14, 2025
UXsniff Heatmap (CVE-2025-32532) , Apr 14, 2025
Crowdfunding for WooCommerce (CVE-2025-32628) , Apr 14, 2025
WordPress Health and Server Condition – Integrated with Google Page Speed (CVE-2025-32520) , Apr 14, 2025