19 matches found
CVE-2026-12242
The AdRotate Banner Manager plugin for WordPress is vulnerable to PHP Code Injection in all versions up to, and including, 5.17.7 via the 'banner' attribute of the adrotate shortcode. This is due to insufficient input validation and sanitization of the banner shortcode attribute before...
EUVD-2026-38758
The AdRotate Banner Manager plugin for WordPress is vulnerable to PHP Code Injection in all versions up to, and including, 5.17.7 via the 'banner' attribute of the adrotate shortcode. This is due to insufficient input validation and sanitization of the banner shortcode attribute before...
CVE-2026-12242
CVE-2026-12242 affects the WordPress AdRotate Banner Manager plugin up to version 5.17.7. The vulnerability is PHP Code Injection via the banner attribute of the adrotate shortcode, caused by insufficient validation and sanitization before concatenation into a PHP code string wrapped in W3 Total ...
WordPress AdRotate Banner Manager plugin <= 5.17.7 - Authenticated (Contributor+) PHP Code Injection vulnerability
Authenticated Contributor+ PHP Code Injection vulnerability discovered by Osvaldo Noe Gonzalez Del Rio Os - krei.dev | ogbuilders.io in WordPress Plugin AdRotate Banner Manager versions = 5.17.7...
EUVD-2022-30925
Malicious code in bioql PyPI...
CVE-2022-1206
The AdRotate Banner Manager – The only ad manager you'll need plugin for WordPress is vulnerable to arbitrary file uploads due to missing file extension sanitization in the adrotateinsertmedia function in all versions up to, and including, 5.13.2. This makes it possible for authenticated attacker...
CVE-2022-1206
The AdRotate Banner Manager – The only ad manager you'll need plugin for WordPress is vulnerable to arbitrary file uploads due to missing file extension sanitization in the adrotateinsertmedia function in all versions up to, and including, 5.13.2. This makes it possible for authenticated attacker...
CVE-2022-1206
CVE-2022-1206 concerns the WordPress plugin AdRotate Banner Manager. The vulnerability is an arbitrary file upload caused by missing file extension sanitization in the adrotate_insert_media() function, affecting all versions up to and including 5.13.2. It requires authenticated access at administ...
PT-2024-11506 · WordPress · Adrotate Banner Manager
Name of the Vulnerable Software and Affected Versions: The AdRotate Banner Manager – The only ad manager you'll need plugin for WordPress versions up to, and including, 5.13.2 Description: The issue is related to arbitrary file uploads due to missing file extension sanitization in the adrotate...
WordPress plugin AdRotate Banner Manager 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A security vulnerability...
WordPress Plugin 'AdRotate Banner Manager' < 5.9.1 XSRF
The WordPress application running on the remote host has a version of the 'AdRotate Banner Manager' plugin that is prior to 5.9.1. It is, therefore, affected by a cross-site request forgery XSRF vulnerability. A remote attacker can, with the interaction of a privileged user, execute actions, such...
CVE-2022-26366
Cross-Site Request Forgery CSRF in AdRotate Banner Manager Plugin = 5.9 on WordPress...
CVE-2022-26366
Cross-Site Request Forgery CSRF in AdRotate Banner Manager Plugin = 5.9 on WordPress...
CVE-2022-26366
Cross-Site Request Forgery CSRF in AdRotate Banner Manager Plugin = 5.9 on WordPress...
Cross site request forgery (csrf)
Cross-Site Request Forgery CSRF in AdRotate Banner Manager Plugin = 5.9 on WordPress...
CVE-2022-26366 WordPress AdRotate Banner Manager Plugin <= 5.9 is vulnerable to Cross Site Request Forgery (CSRF)
Cross-Site Request Forgery CSRF in AdRotate Banner Manager Plugin = 5.9 on WordPress...
CVE-2022-26366
CVE-2022-26366 affects the WordPress AdRotate Banner Manager Plugin, specifically versions <= 5.9. It describes a CSRF/XSRF vulnerability that can enable an attacker to perform privileged actions (e.g., password changes) under a user’s authentication. The issue is tied to ads/banner management...
WordPress plugin AdRotate Banner Manager 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site request forgery vulnerability...
PT-2022-17814 · WordPress · Adrotate Banner Manager Plugin
Name of the Vulnerable Software and Affected Versions: AdRotate Banner Manager Plugin versions = 5.9 Description: The issue is related to Cross-Site Request Forgery CSRF in the AdRotate Banner Manager Plugin on WordPress. Recommendations: For AdRotate Banner Manager Plugin versions = 5.9, update ...