cleantalk
Vulnerabilities and Security Researches

Advanced ads Management by Inazo, 63dad79a-aa7a-4607-afe4-e1c218b31da6

CVE, Research URL

63dad79a-aa7a-4607-afe4-e1c218b31da6

Home page URL

Security reports for Advanced ads Management by Inazo

Application

Advanced ads Management by Inazo

Published on
-
Research Description
Advanced ads Management by Inazo [inazo-advanced-ads-management] < 1.4 Advanced ads Management &lt;= 1.3 - Authenticated Stored Cross-Site Scripting (XSS) Any authenticated user, including authors, can embed JavaScript via the &#039;HTML Codes&#039; functionality when creating a new add. Embedding JavaScript should be restricted to users with the &#039;unfiltered_html&#039; capability.
Affected versions
max 1.4.
Status
vulnerable
Previous vulnerability researches
Advanced ads Management by Inazo (43d0bf85cc455322a9cd5d5c7579ff8d24af3c54) , Jun 07, 2024
Advanced ads Management by Inazo (83748619e34aa47e21c32a4e080e7829c69fcbb0) , Jun 16, 2026
Advanced ads Management by Inazo (63dad79a-aa7a-4607-afe4-e1c218b31da6) , Jun 16, 2026
Advanced Ads – Ad Manager &amp; AdSense (e83c33af3964f299b7ca2b4f32c9ddbf9551b285) , Jun 16, 2026
Advanced Ads – Ad Manager &amp; AdSense (CVE-2025-10487) , Nov 11, 2025
New vulnerability
Web Push Notifications by PushEngage: WordPress Push Notifications to Supercharge Your Engagement (CVE-2026-52698) , Jun 19, 2026
CF7 to Webhook (CVE-2026-11395) , Jun 19, 2026
W3 Total Cache (CVE-2026-39595) , Jun 19, 2026
Advanced Ads – Ad Manager &amp; AdSense (CVE-2026-54816) , Jun 19, 2026
Advanced Order Export For WooCommerce (CVE-2026-11360) , Jun 19, 2026