Browse all 3 CVE security advisories affecting AdFoxly. AI-powered Chinese analysis, POCs, and references for each vulnerability.
AdFoxly operates as an advertising platform that enables publishers and advertisers to manage campaigns and track performance. Historically, the platform has been susceptible to multiple security vulnerabilities, including cross-site scripting (XSS) and remote code execution (RCE) flaws, which have allowed attackers to compromise user sessions or execute arbitrary code. With three CVEs documented, these vulnerabilities have primarily stemmed from insufficient input validation and insecure direct object references. While no major public incidents have been widely reported, the consistent pattern of vulnerabilities suggests potential risks for users who handle sensitive advertising data or integrate the platform into their infrastructure.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-34802 | WordPress AdFoxly plugin <= 1.8.5 - Broken Access Control vulnerability — AdFoxly – Ad Manager, AdSense Ads & Ads.txtCWE-862 | 5.3 | Medium | 2024-06-09 |
| CVE-2023-46617 | WordPress AdFoxly – Ad Manager, AdSense Ads & Ads.txt Plugin <= 1.8.5 is vulnerable to Cross Site Request Forgery (CSRF) — AdFoxly – Ad Manager, AdSense Ads & Ads.txtCWE-352 | 5.4 | Medium | 2023-12-18 |
| CVE-2023-30754 | WordPress AdFoxly – Ad Manager, AdSense Ads & Ads.txt Plugin <= 1.8.5 is vulnerable to Cross Site Scripting (XSS) — AdFoxly – Ad Manager, AdSense Ads & Ads.txtCWE-79 | 7.1 | High | 2023-08-14 |
This page lists every published CVE security advisory associated with AdFoxly. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.