Datafeedr

datafeedr

2 CVEs • 1 product

Products (1)

Click to collapse

Toggle

Ads By Datafeedr.com

ads_by_datafeedr.com

2 CVEs

CVEs (2)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-49169 1Datafeedr 1Ads By Datafeedr.com Jun 17, 2026 Dec 15, 2023 N/A· v4 5.4 MEDIUM· v3 N/A· v2 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in datafeedr.Com Ads by datafeedr.Com allows Stored XSS.This issue affects Ads by datafeedr.Com: from n/a through 1.2.0.
CVE-2023-5843 1Datafeedr 1Ads By Datafeedr.com Jun 17, 2026 Oct 30, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 The Ads by datafeedr.com plugin for WordPress is vulnerable to Remote Code Execution in versions up to, and including, 1.1.3 via the 'dfads_ajax_load_ads' function. This allows unauthenticated attackers to execute code o...Show more The Ads by datafeedr.com plugin for WordPress is vulnerable to Remote Code Execution in versions up to, and including, 1.1.3 via the 'dfads_ajax_load_ads' function. This allows unauthenticated attackers to execute code on the server. The parameters of the callable function are limited, they cannot be specified arbitrarily.Show less

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2023-49169

1Datafeedr

1Ads By Datafeedr.com

Jun 17, 2026

Dec 15, 2023

N/A· v4

5.4 MEDIUM· v3

N/A· v2

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in datafeedr.Com Ads by datafeedr.Com allows Stored XSS.This issue affects Ads by datafeedr.Com: from n/a through 1.2.0.

CVE-2023-5843

1Datafeedr

1Ads By Datafeedr.com

Jun 17, 2026

Oct 30, 2023

N/A· v4

9.8 CRITICAL· v3

N/A· v2

The Ads by datafeedr.com plugin for WordPress is vulnerable to Remote Code Execution in versions up to, and including, 1.1.3 via the 'dfads_ajax_load_ads' function. This allows unauthenticated attackers to execute code on the server. The parameters of the callable function are limited, they cannot be specified arbitrarily.Show less