Advanced Ads < 2.0.13 – Unauthenticated Limited Code Execution | CVE 2025-10487 | Plugin Vulnerabilities

Description

The plugin is vulnerable to Remote Code Execution via the select_one() function. This is due to the endpoint not properly restricting access to the AJAX endpoint or limiting the functions that can be called to safe functions. This makes it possible for unauthenticated attackers to call arbitrary functions beginning with get_the_ like get_the_excerpt which can make information exposure possible.

Affects Plugins

Fixed in 2.0.13

References

CVE

URL

https://www.wordfence.com/threat-intel/vulnerabilities/id/3efe6b81-72db-4419-92a3-26e22ebf46e8

Classification

Type

RCE

OWASP top 10

CWE

CVSS

Miscellaneous

Original Researcher

mikemyers

Verified

No

WPVDB ID

c454adf7-9af3-49c9-bd96-37a010ff0981

Timeline

Publicly Published

2025-10-31 (about 6 months ago)

Added

2025-11-03 (about 6 months ago)

Last Updated

2025-11-03 (about 6 months ago)

Other

Published

Title

Published

2025-05-07

Title

Wolmart | Multi-Vendor Marketplace WooCommerce Theme < 1.8.12 - Unauthenticated Arbitrary Shortcode Execution in wolmart_loadmore

Published

2026-04-03

Title

Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress < 4.16.12 - Unauthenticated Arbitrary Shortcode Execution via Checkout Billing Fields

Published

2025-10-16

Title

Paid Videochat Turnkey Site <= 7.3.23 - Admin+ Remote Code Execution

Published

2025-02-24

Title

Ohio Extra <= 3.4.7 - Unauthenticated Arbitrary Shortcode Execution

Published

2022-06-28

Title

Import any XML or CSV File to WordPress < 3.6.8 - Admin+ Arbitrary Code Execution