Car Dealership

Vulnerabilities 9Slug cardealerTheme page →

Minimum safe version

1.6.8

Update to 1.6.8 or later to address 8 fixable vulnerabilities

⚠ 1 vulnerability has no fix
N/A Unfixed
2025-05-23≤ 1.6.6

CVE-2025-39480

CVEWordfence
High 8.8
2025-02-27< 1.6.5

Cardealer <= 1.6.4 - Cross-Site Request Forgery to User Update via update_user_profile

WordfenceEUVDCVE
Medium 5.4
2025-02-27< 1.6.5

Cardealer <= 1.6.4 - Missing Authorization to Authenticated (Subscriber+) Change and Delete JS and CSS Files

WordfenceEUVDCVE
High 8.8
2025-02-27< 1.6.5

Cardealer <= 1.6.4 - Arbitrary Theme Option Update to Authenticated (Subscriber+) Privilege Escalation

WordfenceEUVDCVE
High 8.8
2025-02-27< 1.6.4

WordPress Car Dealer Theme <= 1.6.3 is vulnerable to Arbitrary File Deletion

EUVDPatchstackWordfenceCVE
High 7.5
2019-10-11< 1.1.9

CVE-2015-9483

CVEWPScan
N/A
< 1.1.9

wpscan.com

WPScan