Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 7:36 a.m.5 views

CVE-2024-5285

The wp-affiliate-platform WordPress plugin before 6.5.2 does not have CSRF check in place when deleting affiliates, which could allow attackers to make a logged in user change delete them via a CSRF attack...

5.5CVSS6.7AI score0.00213EPSS
Exploits1References1
Patchstack
Patchstack
added 2024/07/29 6:33 a.m.7 views

WordPress WP Affiliate Platform plugin < 6.5.2 - Affiliate Deletion via CSRF vulnerability

Affiliate Deletion via CSRF vulnerability discovered by Bob Matyas in WordPress Plugin Affiliate Manager versions 6.5.2...

5.5CVSS7AI score0.00213EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2024/07/29 6:15 a.m.27 views

CVE-2024-5285

The wp-affiliate-platform WordPress plugin before 6.5.2 does not have CSRF check in place when deleting affiliates, which could allow attackers to make a logged in user change delete them via a CSRF attack...

5.5CVSS0.00213EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/07/29 6:0 a.m.12 views

CVE-2024-5285 WP Affiliate Platform < 6.5.2 - Affiliate Deletion via CSRF

The wp-affiliate-platform WordPress plugin before 6.5.2 does not have CSRF check in place when deleting affiliates, which could allow attackers to make a logged in user change delete them via a CSRF attack...

7AI score0.00213EPSS
Exploits1References1
NVD
NVD
added 2006/09/19 10:7 p.m.14 views

CVE-2006-4895

IDevSpot NexieAffiliate 1.9 and earlier allows remote attackers to delete arbitrary affiliates via a modified id parameter to delete.php...

7.5CVSS6.8AI score0.02487EPSS
Exploits1References4
Rows per page
Query Builder