{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-1795", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "state": "PUBLISHED", "assignerShortName": "Wordfence", "dateReserved": "2026-02-03T08:41:44.369Z", "datePublished": "2026-02-14T06:42:29.053Z", "dateUpdated": "2026-04-08T16:58:09.430Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-08T16:58:09.430Z"}, "affected": [{"vendor": "sivenso", "product": "Address Bar Ads", "versions": [{"version": "0", "status": "affected", "lessThanOrEqual": "1.0.0", "versionType": "semver"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "The Address Bar Ads plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the URL Path in all versions up to, and including, 1.0.0 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link."}], "title": "Address Bar Ads <= 1.0.0 - Reflected Cross-Site Scripting", "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/6728fca7-f66d-4b8a-a16f-db60a315b434?source=cve"}, {"url": "http://plugins.trac.wordpress.org/browser/address-bar-ads/trunk/address_bar_ads.php#L444"}, {"url": "http://plugins.trac.wordpress.org/browser/address-bar-ads/trunk/address_bar_ads.php#L448"}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", "cweId": "CWE-79", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "baseScore": 6.1, "baseSeverity": "MEDIUM"}}], "credits": [{"lang": "en", "type": "finder", "value": "Abdulsamad Yusuf"}], "timeline": [{"time": "2026-01-04T00:00:00.000Z", "lang": "en", "value": "Discovered"}, {"time": "2026-02-13T18:27:17.000Z", "lang": "en", "value": "Disclosed"}]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-02-17T15:36:43.083667Z", "id": "CVE-2026-1795", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-02-17T15:46:54.041Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-1795", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-02-17T15:36:43.083667Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-02-17T15:36:43.759Z"}}], "cna": {"title": "Address Bar Ads <= 1.0.0 - Reflected Cross-Site Scripting", "credits": [{"lang": "en", "type": "finder", "value": "Abdulsamad Yusuf"}], "metrics": [{"cvssV3_1": {"version": "3.1", "baseScore": 6.1, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"}}], "affected": [{"vendor": "sivenso", "product": "Address Bar Ads", "versions": [{"status": "affected", "version": "0", "versionType": "semver", "lessThanOrEqual": "1.0.0"}], "defaultStatus": "unaffected"}], "timeline": [{"lang": "en", "time": "2026-01-04T00:00:00.000Z", "value": "Discovered"}, {"lang": "en", "time": "2026-02-13T18:27:17.000Z", "value": "Disclosed"}], "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/6728fca7-f66d-4b8a-a16f-db60a315b434?source=cve"}, {"url": "http://plugins.trac.wordpress.org/browser/address-bar-ads/trunk/address_bar_ads.php#L444"}, {"url": "http://plugins.trac.wordpress.org/browser/address-bar-ads/trunk/address_bar_ads.php#L448"}], "descriptions": [{"lang": "en", "value": "The Address Bar Ads plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the URL Path in all versions up to, and including, 1.0.0 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-79", "description": "CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')"}]}], "providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-08T16:58:09.430Z"}}}, "cveMetadata": {"cveId": "CVE-2026-1795", "state": "PUBLISHED", "dateUpdated": "2026-04-08T16:58:09.430Z", "dateReserved": "2026-02-03T08:41:44.369Z", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "datePublished": "2026-02-14T06:42:29.053Z", "assignerShortName": "Wordfence"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "The Address Bar Ads plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the URL Path in all versions up to, and including, 1.0.0 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link."}, {"lang": "es", "value": "El plugin Address Bar Ads para WordPress es vulnerable a Cross-Site Scripting Reflejado a trav\u00e9s de la ruta URL en todas las versiones hasta la 1.0.0, inclusive, debido a una sanitizaci\u00f3n de entrada y un escape de salida insuficientes. Esto permite a atacantes no autenticados inyectar scripts web arbitrarios en p\u00e1ginas que se ejecutan si logran enga\u00f1ar a un usuario para que realice una acci\u00f3n como hacer clic en un enlace."}], "id": "CVE-2026-1795", "lastModified": "2026-04-15T00:35:42.020", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.1, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 2.7, "source": "security@wordfence.com", "type": "Secondary"}]}, "published": "2026-02-14T07:16:10.733", "references": [{"source": "security@wordfence.com", "url": "http://plugins.trac.wordpress.org/browser/address-bar-ads/trunk/address_bar_ads.php#L444"}, {"source": "security@wordfence.com", "url": "http://plugins.trac.wordpress.org/browser/address-bar-ads/trunk/address_bar_ads.php#L448"}, {"source": "security@wordfence.com", "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/6728fca7-f66d-4b8a-a16f-db60a315b434?source=cve"}], "sourceIdentifier": "security@wordfence.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-79"}], "source": "security@wordfence.com", "type": "Secondary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[0,1.0.0]"}}], "product": "address_bar_ads", "vendor": "sivenso"}, {"configurations": [{"platform": null, "status": "unaffected", "versions": null}], "product": "wordpress", "vendor": "wordpress"}], "analysis": {"en": {"generated_at": "2026-04-15T20:38:26.922228+00:00", "value": {"mitigation_remediation": ["Update the Address Bar Ads plugin to the latest version\u2014any release above 1.0.0 addresses the XSS issue", "If an update is not immediately available, deactivate or uninstall the plugin to eliminate the attack surface", "Ensure that all WordPress core and plugin installations are kept current and that any user\u2011supplied URLs are properly escaped before rendering"], "summary": {"action": "Apply Patch", "impact": "Cross\u2011Site Scripting leading to unauthorized script execution"}, "threat_synthesis": {"affected_systems": "Sivenso\u2019s Address Bar Ads plugin, versions 1.0.0 and earlier, installed on WordPress sites. No other products are listed, so only environments running this specific plugin are impacted.", "description_and_impact": "The Address Bar Ads plugin for WordPress is vulnerable to reflected cross\u2011site scripting due to inadequate input validation and output sanitization. When an attacker crafts a URL containing malicious JavaScript in the path, a browser will echo that payload back into the page without proper escaping. Executed scripts can compromise the confidentiality of user data, steal cookies, or perform actions on behalf of the victim. Because the vulnerability is reflected, it does not require pre\u2011existing data in the database, making it exploitable in real\u2011time interactions.", "risk_and_exploitability": "The CVSS base score of 6.1 indicates a medium severity. The EPSS score is reported as <1%, showing a very low but nonzero probability of exploitation. The vulnerability is not listed in the CISA KEV catalog. Attackers can exploit it by having a victim click on a malicious link that embeds script code in the URL path\u2014an unauthenticated, remote attack that requires no additional privileges."}}}}, "created": "2026-02-16T12:02:16.886724+00:00", "updated": "2026-04-15T20:45:06.384359+00:00", "vendors": ["sivenso", "sivenso$PRODUCT$address_bar_ads", "wordpress", "wordpress$PRODUCT$wordpress"]}