High 7.1
2026-01-22< 2.4.6
CVE-2025-69317
CarSpot
Minimum safe version
2.4.6
Update to 2.4.6 or later to address 11 fixable vulnerabilities
Critical 9.8
2025-02-18< 2.4.4
CVE-2024-12860
N/A
< 2.2.3
CarSpot < 2.2.3 - Multiple Vulnerabilities
N/A
2020-01-27< 2.2.4
CarSpot – Dealership Wordpress Classified Theme <= 2.2.3 - Insecure Direct Object Reference
N/A
2020-01-27< 2.2.4
CarSpot – Dealership Wordpress Classified Theme <= 2.2.3 - Stored Cross-Site Scripting
N/A
2019-04-23< 2.1.7
WordPress CarSpot theme <= 2.1.6 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability
N/A
2020-01-27< 2.2.3
WordPress CarSpot premium theme <= 2.2.2 - Insecure Direct Object References (IDOR) vulnerability
N/A
2020-01-27< 2.2.3
WordPress CarSpot premium theme <= 2.2.2 - Authenticated Persistent Cross-Site Scripting (XSS) vulnerability (ad post)
N/A
2020-01-27< 2.2.3
WordPress CarSpot premium theme <= 2.2.2 - Authenticated Persistent Cross-Site Scripting (XSS) vulnerability (registration form & user profile)
N/A
2020-01-27< 2.2.1
WordPress CarSpot theme <= 2.2.0 - Multiple Vulnerabilities (Authenticated Persistent XSS & IDOR)
Medium 5.4
2019-09-03< 2.1.7
CVE-2019-15870