Advanced Ads < 1.17.4 - Authenticated Reflected XSS via Admin Dashboard

Affects Plugin

fixed in version 1.17.4

References

URL https://labs.sucuri.net/reflected-xss-in-advanced-ads-admin-dashboard/

Classification

Type XSS
OWASP Top 10 A7: Cross-Site Scripting (XSS)
CWE CWE-79

Miscellaneous

Original Researcher Antony Garand (sucuri.net)
Views 1711
Verified No
WPVDB ID 10136

Timeline

Publicly Published 2020-03-18 (16 days ago)
Added 2020-03-18 (15 days ago)
Last Updated 2020-03-19 (15 days ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin