Dealertrend Cardealerpress
2 CVEs affecting Dealertrend Cardealerpress. Latest disclosed: 2025-05-07. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-54325 | High | 7.1 | 2024-12-13 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in DealerTrend CarDealerPress cardealerpress allows Reflecte… |
CVE-2025-3860 | Medium | 6.4 | 2025-05-07 | The CarDealerPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘saleclass' parameter in all versions up to, and including, 6.8.25… |