Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
7.1
Jezza101 bbpress Simple Advert Units allows malicious scripts to run on your website
CVE-2025-53228
Summary
A security issue in Jezza101 bbpress Simple Advert Units plugin allows hackers to inject malicious scripts into your website, potentially causing harm to your visitors. This affects versions 0.42 and below. Update to the latest version to fix the issue.
Original title
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in jezza101 bbpress Simple Advert Units bbpress-simple-advert-units allows Reflected XSS.This issu...
Original description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in jezza101 bbpress Simple Advert Units bbpress-simple-advert-units allows Reflected XSS.This issue affects bbpress Simple Advert Units: from n/a through <= 0.41.
nvd CVSS3.1
7.1
Vulnerability type
CWE-79
Cross-site Scripting (XSS)
Published: 20 Feb 2026 · Updated: 11 Mar 2026 · First seen: 6 Mar 2026