Vulnerabilities > AD Inserter Project

DATE CVE VULNERABILITY TITLE RISK
2023-10-20 CVE-2023-4668 Missing Authorization vulnerability in AD Inserter Project AD Inserter
The Ad Inserter for WordPress is vulnerable to Sensitive Information Exposure in versions up to, and including, 2.7.30 via the ai-debug-processing-fe URL parameter.
network
low complexity
ad-inserter-project CWE-862
7.5
2023-05-15 CVE-2023-1549 Unspecified vulnerability in AD Inserter Project AD Inserter
The Ad Inserter WordPress plugin before 2.7.27 unserializes user input provided via the settings, which could allow high privilege users such as admin to perform PHP Object Injection when a suitable gadget is present
network
low complexity
ad-inserter-project
7.2
2022-04-04 CVE-2022-0901 Cross-site Scripting vulnerability in AD Inserter Project AD Inserter
The Ad Inserter Free and Pro WordPress plugins before 2.7.12 do not sanitise and escape the REQUEST_URI before outputting it back in an admin page, leading to a Reflected Cross-Site Scripting in browsers which do not encode characters
4.3
2022-02-21 CVE-2022-0288 Cross-site Scripting vulnerability in multiple products
The Ad Inserter WordPress plugin before 2.7.10, Ad Inserter Pro WordPress plugin before 2.7.10 do not sanitise and escape the html_element_selection parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting
4.3
2019-10-22 CVE-2015-9497 Cross-Site Request Forgery (CSRF) vulnerability in AD Inserter Project AD Inserter
The ad-inserter plugin before 1.5.3 for WordPress has CSRF with resultant XSS via wp-admin/options-general.php?page=ad-inserter.php.
6.8
2019-08-22 CVE-2019-15324 Improper Input Validation vulnerability in AD Inserter Project AD Inserter
The ad-inserter plugin before 2.4.22 for WordPress has remote code execution.
network
low complexity
ad-inserter-project CWE-20
6.5
2019-08-22 CVE-2019-15323 Path Traversal vulnerability in AD Inserter Project AD Inserter
The ad-inserter plugin before 2.4.20 for WordPress has path traversal.
network
low complexity
ad-inserter-project CWE-22
7.5