9 matches found
CVE-2026-12102
The UsersWP – Front-end login form, User Registration, User Profile & Members Directory plugin for WP plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 1.2.63 via the 'userid' parameter due to missing validation on a user controlled key...
PT-2026-43495
The CM Ad Changer – A simple tool to control and optimize your site's banners plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.0.7. This is due to missing or incorrect nonce validation on the cmac campaigns action function. This makes it...
CVE-2025-52670
Missing authorization check in Revive Adserver 5.5.2 and 6.0.1 and earlier versions causes users on the system to delete banners owned by other accounts...
EUVD-2025-198332
Missing authorization check in Revive Adserver 5.5.2 and 6.0.1 and earlier versions causes users on the system to delete banners owned by other accounts...
PT-2025-47620
Missing authorization check in Revive Adserver 5.5.2 and 6.0.1 and earlier versions causes users on the system to delete banners owned by other accounts...
Revive Adserver: IDOR Vulnerability in Banner Deletion
Summary I found an IDOR vulnerability in Revive Adserver's banner deletion endpoint that lets any Manager delete banners belonging to other Managers. The code validates access to the parent campaign but doesn't check if the user owns the specific banner being deleted. This means Manager A can...
EUVD-2013-5786
Malware in sbrugna...
Cross site request forgery (csrf)
Multiple cross-site request forgery CSRF vulnerabilities in OpenX 2.8.11 and earlier allow remote attackers to hijack the authentication of administrators for requests that delete 1 users via admin/agency-user-unlink.php, 2 advertisers via admin/advertiser-delete.php, 3 banners via...
Galich , phpAds
http://www.sait.lv/phpAds/viewbanner.php3?bannerID=21 i mi vidim banner zaciklivajem vot eto : http://www.sait.lv/phpAds/bannerdelete.php3?bannerID=22 naprimer: Ctrl+R IE nu i smotrim opjatj http://www.sait.lv/phpAds/viewbanner.php3?bannerID=21 a baner prostil ; zlaja shutka ; mozno sozdatj formu...