Cross-site Scripting Vulnerability in WPAdverts by Greg Winiarski
CVE-2025-54024
6.5MEDIUM
What is CVE-2025-54024?
The vulnerability in WPAdverts by Greg Winiarski exposes users to Cross-site Scripting (XSS) attacks due to improper sanitization of input when generating web pages. This flaw allows attackers to inject malicious scripts into web content, potentially compromising user interactions and data integrity. The affected versions range from n/a up to 2.2.5, and users are encouraged to apply security best practices to mitigate risks associated with this vulnerability.
Affected Version(s)
WPAdverts <= 2.2.5