CVE-2025-53228

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in jezza101 bbpress Simple Advert Units bbpress-simple-advert-units allows Reflected XSS.This issue affects bbpress Simple Advert Units: from n/a through = 0.41...

CVE-2025-53228

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in jezza101 bbpress Simple Advert Units bbpress-simple-advert-units allows Reflected XSS.This issue affects bbpress Simple Advert Units: from n/a through = 0.41...

CVE-2025-53228

The CVE-2025-53228 issue affects WordPress bbpress Simple Advert Units (plugin) up to and including version 0.41. It is a Reflected Cross‑Site Scripting (XSS) vulnerability caused by improper input neutralization during web page generation. Affected component: bbpress-simple-advert-units. Impact ...

CVE-2025-53228 WordPress bbpress Simple Advert Units Plugin <= 0.41 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in jezza101 bbpress Simple Advert Units bbpress-simple-advert-units allows Reflected XSS.This issue affects bbpress Simple Advert Units: from n/a through = 0.41...

PT-2026-21035

Name of the Vulnerable Software and Affected Versions bbpress Simple Advert Units versions through 0.41 Description The software contains a flaw related to improper handling of user-supplied data when creating web pages, which can lead to Reflected Cross-site Scripting XSS. This means that an...

WordPress plugin bbpress Simple Advert Units 跨站脚本漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application plugin. The WordPre...

Malicious code in ui-advert-manager (npm)

The package ui-advert-manager was found to contain malicious code...

CVE-2022-0662

The AdRotate WordPress plugin before 5.8.23 does not sanitise and escape Advert Names which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed...

CVE-2022-0662

The AdRotate WordPress plugin before 5.8.23 does not sanitise and escape Advert Names which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed...

CVE-2022-0662

The AdRotate WordPress plugin before 5.8.23 does not sanitise and escape Advert Names which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed...

CVE-2022-0662 Adrotate < 5.8.23 - Admin+ XSS via Advert Name

The AdRotate WordPress plugin before 5.8.23 does not sanitise and escape Advert Names which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed...

CVE-2021-44348

SQL Injection vulnerability exists in TuziCMS v2.0.6 via the id parameer in App\Manage\Controller\AdvertController.class.php...

TuziCMS SQL注入漏洞

TuziCMS Rabbit CMS is a PHP and MySQL based enterprise website content management system. SQL injection vulnerability exists in TuziCMS version v2.0.6, which originates from the id parameter in AppManageControllerAdvertController.class.php, and can be exploited by attackers to vulnerability can b...

gl-advert-delivery.com Open Redirect vulnerability

On the 06.11.2017 security researcher reported a Open Redirect vulnerability affecting the gl-advert-delivery.com website via the Open Bug Bounty coordinated vulnerability disclosure program. Coordinated Disclosure Timeline: Description| Value ---|--- Vulnerability submitted via Open Bug Bounty| ...

stalbertsportsfan.com Open Redirect vulnerability

Vulnerable URL: http://www.stalbertsportsfan.com/advert/advert.php?advert=www.openbugbounty.org Details: Description| Value ---|--- Patched:| Verification in progress Latest check for patch:| 30.10.2017 Vulnerability type:| Open Redirect Vulnerability status:| Publicly disclosed Alexa Rank| 67625...

gl-advert-delivery.com Open Redirect vulnerability

Open Bug Bounty ID: OBB-137046 Description| Value ---|--- Affected Website:| gl-advert-delivery.com Vulnerable Application:| Custom Code Vulnerability Type:| Open Redirect / CWE-601 CVSSv3 Score:| 3.4 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:L/A:N Remediation Guide:| OWASP Open Redirect Cheat Sheet...

anibis.ch XSS vulnerability

Vulnerable URL: http://www.anibis.ch/de/camping--8/advertlist.aspx?x--alert'xssposed'...

gl-advert-delivery.com Open Redirect vulnerability

Open Bug Bounty ID: OBB-80293 Description| Value ---|--- Affected Website:| gl-advert-delivery.com Vulnerable Application:| Custom Code Vulnerability Type:| Open Redirect / CWE-601 CVSSv3 Score:| 3.4 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:L/A:N Remediation Guide:| OWASP Open Redirect Cheat Sheet...

Joomla Jomdirectory and Advert Components SQL Injection Vulnerabilities

This host is running Joomla with Jomdirectory and/or Advert components and is prone to SQL injection vulnerabilities. OpenVAS Vulnerability Test $Id: secpodjoomlamultcomponentssqlinjvuln.nasl 5958 2017-04-17 09:02:19Z teissa $ Joomla Jomdirectory and Advert Components SQL Injection Vulnerabilitie...

Joomla Jomdirectory and Advert Components SQLi Vulnerabilities

Joomla with Jomdirectory and/or Advert components is prone to SQL injection SQLi vulnerabilities. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-on...