cbcvebase.

Stylemixthemes Motors vulnerabilities

5 known vulnerabilities affecting stylemixthemes/motors.

Total CVEs
5
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH2MEDIUM1

Vulnerabilities

Page 1 of 1
CVE-2025-64374P2CRITICALCVSS 9.9≤ 5.6.812025-12-18
CVE-2025-64374 [CRITICAL] CWE-434 CVE-2025-64374: Unrestricted Upload of File with Dangerous Type vulnerability in StylemixThemes Motors motors allows Unrestricted Upload of File with Dangerous Type vulnerability in StylemixThemes Motors motors allows Using Malicious Files.This issue affects Motors: from n/a through <= 5.6.81.
nvd
CVE-2026-54828P3HIGHCVSS 7.5≥ n/a, ≤ 1.4.1092026-06-25
CVE-2026-54828 [HIGH] CWE-862 CVE-2026-54828: Unauthenticated Broken Access Control in Motors <= 1.4.109 versions. Unauthenticated Broken Access Control in Motors <= 1.4.109 versions.
nvd
CVE-2026-39515P3MEDIUMCVSS 6.5≥ n/a, < 1.4.1072026-06-15
CVE-2026-39515 [MEDIUM] CWE-862 CVE-2026-39515: Subscriber Broken Access Control in Motors < 1.4.107 versions. Subscriber Broken Access Control in Motors < 1.4.107 versions.
nvd
CVE-2026-54812CRITICALCVSS 9.3≥ n/a, ≤ 1.4.1092026-06-17
CVE-2026-54812 [CRITICAL] CWE-89 WordPress Motors plugin <= 1.4.109 - SQL Injection vulnerability WordPress Motors plugin <= 1.4.109 - SQL Injection vulnerability Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in StylemixThemes Motors allows Blind SQL Injection. This issue affects Motors: from n/a through 1.4.109.
cvelistv5
CVE-2026-54814HIGHCVSS 8.1≥ n/a, ≤ 1.4.1092026-06-17
CVE-2026-54814 [HIGH] CWE-98 WordPress Motors plugin <= 1.4.109 - Local File Inclusion vulnerability WordPress Motors plugin <= 1.4.109 - Local File Inclusion vulnerability Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in StylemixThemes Motors allows PHP Local File Inclusion. This issue affects Motors: from n/a through 1.4.109.
cvelistv5
Stylemixthemes Motors vulnerabilities | cvebase