Vulnerabilities > AD Injection Project

DATE	CVE	VULNERABILITY TITLE	RISK
2022-04-18	CVE-2022-0661	Code Injection vulnerability in AD Injection Project AD Injection 1.2.0.19 The Ad Injection WordPress plugin through 1.2.0.19 does not properly sanitize the body of the adverts injected into the pages, allowing a high privileged user (Admin+) to inject arbitrary HTML or javascript even with unfiltered_html disallowed, leading to a stored cross-site scripting (XSS) vulnerability. network low complexity ad-injection-project CWE-94	6.5

Vulnerabilities > AD Injection Project {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"AD Injection Project"}]}