CVE-2026-24602
- EPSS 0.01%
- Veröffentlicht 23.01.2026 14:29:03
- Zuletzt bearbeitet 04.02.2026 11:16:03
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. This is a false positive. According to the vendor, the function identified as a vulnerability is intentional and part of the expected design.
CVE-2025-53319
- EPSS 0.03%
- Veröffentlicht 20.08.2025 08:03:15
- Zuletzt bearbeitet 20.08.2025 14:39:07
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Raptive Raptive Ads allows Reflected XSS. This issue affects Raptive Ads: from n/a through 3.8.0.
CVE-2025-32554
- EPSS 0.19%
- Veröffentlicht 17.04.2025 15:47:31
- Zuletzt bearbeitet 17.04.2025 20:21:05
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Raptive Raptive Ads allows Reflected XSS. This issue affects Raptive Ads: from n/a through 3.7.3.
CVE-2024-13363
- EPSS 0.68%
- Veröffentlicht 19.02.2025 09:15:09
- Zuletzt bearbeitet 26.02.2025 13:16:56
The Raptive Ads plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'poc' parameter in all versions up to, and including, 3.6.3 due to insufficient input sanitization and output escaping. This makes it possible for unauthenti...
CVE-2024-13364
- EPSS 0.45%
- Veröffentlicht 19.02.2025 09:15:09
- Zuletzt bearbeitet 25.02.2025 21:53:07
The Raptive Ads plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the site_ads_files_reset() and cls_file_reset() functions in all versions up to, and including, 3.6.3. This makes it possible for unauthent...