Vulnerabilities and security researches foradvanced-advertising-system advanced-advertising-system

Oct 22, 2024

CVE, Research URL: CVE-2024-49624
Home page URL: Security reports for Advanced Advertising System
Application: Advanced Advertising System
Date: Oct 20, 2024
Research Description: Deserialization of Untrusted Data vulnerability in Smartdevth Advanced Advertising System allows Object Injection.This issue affects Advanced Advertising System: from n/a through 1.3.1.
Affected versions: Min -, max -.
Status: vulnerable

Apr 09, 2025

CVE, Research URL: CVE-2025-3433
Home page URL: Security reports for Advanced Advertising System
Application: Advanced Advertising System
Date: Apr 08, 2025
Research Description: The Advanced Advertising System plugin for WordPress is vulnerable to Open Redirect in all versions up to, and including, 1.3.1. This is due to insufficient validation on the redirect url supplied via the 'redir' parameter. This makes it possible for unauthenticated attackers to redirect users to potentially malicious sites if they can successfully trick them into performing an action.
Affected versions: Min -, max -.
Status: vulnerable