cleantalk
Vulnerabilities and Security Researches

Advanced Ads – Ad Manager & AdSense, e83c33af3964f299b7ca2b4f32c9ddbf9551b285

CVE, Research URL

e83c33af3964f299b7ca2b4f32c9ddbf9551b285

Home page URL

Security reports for Advanced Ads – Ad Manager & AdSense

Application

Advanced Ads – Ad Manager & AdSense

Published on
Mar 18, 2020
Research Description
Advanced Ads – Ad Manager &amp; AdSense [advanced-ads] < 1.17.4 Advanced Ads <= 1.17.3 - Reflected Cross-Site Scripting The Advanced Ads plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘advads-last-edited-group’ parameter in versions up to, and including, 1.17.3 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.
Affected versions
max 1.17.4.
Status
vulnerable
Previous vulnerability researches
Advanced ads Management by Inazo (43d0bf85cc455322a9cd5d5c7579ff8d24af3c54) , Jun 07, 2024
Advanced ads Management by Inazo (83748619e34aa47e21c32a4e080e7829c69fcbb0) , Jun 16, 2026
Advanced ads Management by Inazo (63dad79a-aa7a-4607-afe4-e1c218b31da6) , Jun 16, 2026
Advanced Ads – Ad Manager &amp; AdSense (e83c33af3964f299b7ca2b4f32c9ddbf9551b285) , Jun 16, 2026
Advanced Ads – Ad Manager &amp; AdSense (CVE-2025-10487) , Nov 11, 2025
New vulnerability
CF7 to Webhook (CVE-2026-11395) , Jun 19, 2026
W3 Total Cache (CVE-2026-39595) , Jun 19, 2026
Advanced Ads – Ad Manager &amp; AdSense (CVE-2026-54816) , Jun 19, 2026
Advanced Order Export For WooCommerce (CVE-2026-11360) , Jun 19, 2026
WP Activity Log (CVE-2026-54806) , Jun 18, 2026