Browse all 3 CVE security advisories affecting AdTribes.io. AI-powered Chinese analysis, POCs, and references for each vulnerability.
AdTribes.io provides a Shopify app for creating and managing advertising campaigns, with three CVEs recorded in its history. Common vulnerabilities include stored cross-site scripting (XSS) and server-side request forgery (SSRF), which have allowed attackers to execute unauthorized actions or steal sensitive data. The platform has faced security incidents where improper access controls led to potential customer data exposure. While no major breaches have been widely documented, the presence of multiple CVEs indicates ongoing security challenges, particularly around input validation and access management. AdTribes.io's integration with Shopify stores makes it a potential attack vector for compromising e-commerce platforms through its advertising infrastructure.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-32513 | WordPress Product Feed PRO for WooCommerce plugin <= 13.3.1 - Sensitive Data Exposure vulnerability — Product Feed PRO for WooCommerceCWE-532 | 5.3 | Medium | 2024-04-17 |
| CVE-2024-24800 | WordPress Product Feed PRO for WooCommerce plugin <= 13.2.5 - Reflected Cross Site Scripting (XSS) vulnerability — Product Feed PRO for WooCommerceCWE-79 | 7.1 | High | 2024-03-27 |
| CVE-2022-46793 | WordPress Product Feed PRO for WooCommerce Plugin <= 12.4.4 is vulnerable to Cross Site Request Forgery (CSRF) — Product Feed PRO for WooCommerceCWE-352 | 5.4 | Medium | 2023-04-06 |
This page lists every published CVE security advisory associated with AdTribes.io. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.