CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WPFactory Adverts adverts-click-tracker allows DOM-Based XSS.This issue affects Adverts: from n/a through = 1.4...

6.5CVSS5.9AI score0.00032EPSS

Exploits0References1

Patchstack•added 2025/09/22 7:36 p.m.•2 views

WordPress Adverts Plugin <= 1.4 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by Peter Thaleikis in WordPress Plugin Adverts versions = 1.4...

6.5CVSS6AI score0.00032EPSS

Exploits0Affected Software1

NVD•added 2025/09/22 7:15 p.m.•2 views

CVE-2025-57911

6.5CVSS0.00032EPSS

Exploits0References1

CVE•added 2025/09/22 6:25 p.m.•5 views

CVE-2025-57911

CVE-2025-57911 is tied to the WordPress Adverts Plugin – Adverts Click Tracker. The connected data indicate an authenticated, stored cross‑site scripting (XSS) vulnerability in Adverts

6.5CVSS5.9AI score0.00032EPSS

Exploits0References1

Cvelist•added 2025/09/22 6:25 p.m.•8 views

CVE-2025-57911 WordPress Adverts Plugin <= 1.4 - Cross Site Scripting (XSS) Vulnerability

6.5CVSS0.00032EPSS

Exploits0References1

Vulnrichment•added 2025/09/22 6:25 p.m.•2 views

CVE-2025-57911 WordPress Adverts Plugin <= 1.4 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WPFactory Adverts allows DOM-Based XSS. This issue affects Adverts: from n/a through 1.4...

6.5CVSS6AI score0.00032EPSS

Exploits0References1

CNNVD•added 2025/09/22 12:0 a.m.•1 views

WordPress plugin Adverts 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A cross-site scripting...

6.5CVSS5.9AI score0.00032EPSS

Exploits0References1

Positive Technologies•added 2025/09/22 12:0 a.m.•1 views

PT-2025-39021

Name of the Vulnerable Software and Affected Versions WPFactory Adverts versions through 1.4 Description A flaw exists in WPFactory Adverts that allows for DOM-Based Cross-site Scripting XSS. This issue arises from improper neutralization of input during web page generation. The vulnerability cou...

6.5CVSS6.1AI score0.00032EPSS

Exploits0References3

Positive Technologies•added 2025/04/16 12:0 a.m.•2 views

PT-2025-16604 · WordPress · Wpadverts

Name of the Vulnerable Software and Affected Versions: WPAdverts versions n/a through 2.2.1 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows Stored XSS. Recommendations: For versions n/a through 2.2....

6.5CVSS9.2AI score0.00237EPSS

Exploits0References4

RedhatCVE•added 2025/04/03 4:20 p.m.•4 views

CVE-2025-31848

Missing Authorization vulnerability in WPFactory Adverts adverts-click-tracker allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Adverts: from n/a through = 1.4...

5.3CVSS7.2AI score0.00266EPSS

Exploits0References1

Patchstack•added 2025/04/01 4:3 p.m.•3 views

WordPress WordPress Adverts Plugin plugin <= 1.4 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Mika in WordPress Plugin Adverts versions = 1.4...

5.3CVSS8.4AI score0.00266EPSS

Exploits0Affected Software1

NVD•added 2025/04/01 3:16 p.m.•4 views

CVE-2025-31848

5.3CVSS0.00266EPSS

Exploits0References1

Vulnrichment•added 2025/04/01 2:51 p.m.•6 views

CVE-2025-31848 WordPress WordPress Adverts Plugin plugin <= 1.4 - Broken Access Control vulnerability

5.3CVSS7.2AI score0.00266EPSS

Exploits0References1

Cvelist•added 2025/04/01 2:51 p.m.•13 views

CVE-2025-31848 WordPress WordPress Adverts Plugin plugin <= 1.4 - Broken Access Control vulnerability

5.3CVSS0.00266EPSS

Exploits0References1

CVE•added 2025/04/01 2:51 p.m.•52 views

CVE-2025-31848

CVE-2025-31848 is a Missing Authorization vulnerability in the WordPress Adverts Plugin (WPFactory) related to the Adverts Click Tracker. Public data indicates impact on the plugin version range “n/a through 1.4” with a CVSS 3.1 base score of 5.3 (Medium) and the attack vector as network, no user...

5.3CVSS7.2AI score0.00266EPSS

Exploits0References1

CNNVD•added 2025/04/01 12:0 a.m.•1 views

WordPress plugin WordPress Adverts Plugin 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

5.3CVSS6.3AI score0.00266EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by