242 matches found
CVE-2023-46617
Cross-Site Request Forgery CSRF vulnerability in AdFoxly AdFoxly – Ad Manager, AdSense Ads & Ads.Txt.This issue affects AdFoxly – Ad Manager, AdSense Ads & Ads.Txt: from n/a through 1.8.5...
Cross site request forgery (csrf)
Cross-Site Request Forgery CSRF vulnerability in AdFoxly AdFoxly – Ad Manager, AdSense Ads & Ads.Txt.This issue affects AdFoxly – Ad Manager, AdSense Ads & Ads.Txt: from n/a through 1.8.5...
CVE-2023-46617
CVE-2023-46617 is a Cross-Site Request Forgery (CSRF) vulnerability in the WordPress plugin “AdFoxly – Ad Manager, AdSense Ads & Ads.Txt”, affected up to version 1.8.5. Public sources indicate unauthenticated attackers can exploit CSRF to trigger actions on behalf of authenticated users, potentia...
PT-2023-30114 · Unknown · Adfoxly – Ad Manager
Name of the Vulnerable Software and Affected Versions: AdFoxly – Ad Manager, AdSense Ads & Ads.Txt versions 1.8.5 and earlier Description: The issue is a Cross-Site Request Forgery CSRF vulnerability. This type of vulnerability allows an attacker to trick a user into performing unintended actions...
WordPress AdFoxly – Ad Manager, AdSense Ads & Ads.txt Plugin <= 1.8.5 is vulnerable to Cross Site Request Forgery (CSRF)
Software AdFoxly – Ad Manager, AdSense Ads & Ads.txt Type Plugin Vulnerable versions = 1.8.5 Fixed in N/A OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-46617 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID 5e1e0878b19f...
AmpedSense – AdSense Split Tester < 4.69 - Reflected XSS
Description The plugin does not sanitise and escape some parameters before outputting them back in the page, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin...
CVE-2023-25476
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Ezoic AmpedSense – AdSense Split Tester plugin = 4.68 versions...
CVE-2023-25476
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Ezoic AmpedSense – AdSense Split Tester plugin = 4.68 versions...
Cross site scripting
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Ezoic AmpedSense – AdSense Split Tester plugin = 4.68 versions...
CVE-2023-25476 WordPress AmpedSense – AdSense Split Tester Plugin <= 4.68 is vulnerable to Cross Site Scripting (XSS)
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Ezoic AmpedSense – AdSense Split Tester plugin = 4.68 versions...
CVE-2023-25476
CVE-2023-25476 affects the WordPress plugin AmpedSense – AdSense Split Tester (versions
WordPress Plugin AmpedSense - AdSense Split Tester Cross-Site Scripting Vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. WordPress Plugin AmpedSense - AdSense Split...
WordPress AmpedSense – AdSense Split Tester Plugin <= 4.68 is vulnerable to Cross Site Scripting (XSS)
Software AmpedSense – AdSense Split Tester Type Plugin Vulnerable versions = 4.68 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-25476 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 7e14cb3c2001 Credits...
Cross site scripting
Unauth. Reflected Cross-Site Scripting XSS vulnerability in AdFoxly AdFoxly – Ad Manager, AdSense Ads & Ads.Txt plugin = 1.8.5 versions...
CVE-2023-30754
CVE-2023-30754 affects the WordPress plugin AdFoxly – Ad Manager, AdSense Ads & Ads.Txt (versions
WordPress plugin AdFoxly - Ad Manager, AdSense Ads & Ads.txt Cross Site Scripting Vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. WordPress plugin AdFoxly - ...
WordPress AdFoxly – Ad Manager, AdSense Ads & Ads.txt Plugin <= 1.8.4 is vulnerable to Cross Site Scripting (XSS)
Software AdFoxly – Ad Manager, AdSense Ads & Ads.txt Type Plugin Vulnerable versions = 1.8.4 Fixed in 1.8.5 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 0e7f543d77a0 Credits Rafi...
WordPress AdFoxly – Ad Manager, AdSense Ads & Ads.txt Plugin <= 1.8.5 is vulnerable to Cross Site Scripting (XSS)
Software AdFoxly – Ad Manager, AdSense Ads & Ads.txt Type Plugin Vulnerable versions = 1.8.5 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-30754 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 18d5dd5b8583...
Massive AdSense Fraud Campaign Uncovered - 10,000+ WordPress Sites Infected
The threat actors behind the black hat redirect malware campaign have scaled up their campaign to use more than 70 bogus domains mimicking URL shorteners and infect over 10,800 websites. "The main objective is still ad fraud by artificially increasing traffic to pages which contain the AdSense ID...
Massive AdSense Fraud Campaign Uncovered - 10,000+ WordPress Sites Infected
The threat actors behind the black hat redirect malware campaign have scaled up their campaign to use more than 70 bogus domains mimicking URL shorteners and infect over 10,800 websites. "The main objective is still ad fraud by artificially increasing traffic to pages which contain the AdSense ID...