CVE-2025-3433

Name of the Vulnerable Software and Affected Versions: Advanced Advertising System plugin for WordPress versions up to and including 1.3.1

Description: The issue arises from insufficient validation of the redirect URL provided through the redir parameter. This allows unauthenticated attackers to redirect users to potentially malicious sites if they can trick them into performing a specific action.

Recommendations: For versions up to and including 1.3.1, update to a version higher than 1.3.1 to resolve the issue. As a temporary workaround, consider restricting access to the redir parameter to minimize the risk of exploitation.