cleantalk
Vulnerabilities and Security Researches

WordPress Adverts Plugin – Adverts Click Tracker, CVE-2025-57911

CVE, Research URL

CVE-2025-57911

Home page URL

Security reports for WordPress Adverts Plugin – Adverts Click Tracker

Application

WordPress Adverts Plugin – Adverts Click Tracker

Published on
Sep 23, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WPFactory Adverts adverts-click-tracker allows DOM-Based XSS.This issue affects Adverts: from n/a through <= 1.4.
Affected versions
max 1.4.
Status
vulnerable
Previous vulnerability researches
WP User Frontend &#8211; Registration, User Profile, Membership, Content Restriction, User Directory, and Frontend Post Submiss (CVE-2023-45002) , Jun 10, 2024
WP User Frontend &#8211; Registration, User Profile, Membership, Content Restriction, User Directory, and Frontend Post Submiss (CVE-2021-24649) , Jun 07, 2024
WP User Frontend &#8211; Registration, User Profile, Membership, Content Restriction, User Directory, and Frontend Post Submiss (CVE-2021-25076) , Jun 07, 2024
WP User Frontend &#8211; Registration, User Profile, Membership, Content Restriction, User Directory, and Frontend Post Submiss (CVE-2023-47682) , Jun 07, 2024
WP User Frontend &#8211; Registration, User Profile, Membership, Content Restriction, User Directory, and Frontend Post Submiss (CVE-2025-58672) , Oct 12, 2025
New vulnerability
VikBooking Hotel Booking Engine &amp; PMS (CVE-2025-5803) , Apr 24, 2026
CTX Feed – WooCommerce Product Feed Manager Plugin (CVE-2026-39434) , Apr 24, 2026
Welcart e-Commerce (CVE-2025-9367) , Apr 24, 2026
Checkout Files Upload for WooCommerce (CVE-2025-4212) , Apr 24, 2026
WordPress Adverts Plugin &#8211; Adverts Click Tracker (CVE-2025-57911) , Apr 24, 2026