CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2019-6779

Malware in sbrugna...

8.8CVSS8.8AI score0.00175EPSS

Exploits0References3

RedhatCVE•added 2025/05/22 8:17 a.m.•7 views

CVE-2019-15868

The affiliates-manager plugin before 2.6.6 for WordPress has CSRF...

8.8CVSS7.1AI score0.00175EPSS

Exploits0References1

CVE•added 2024/02/05 9:21 p.m.•45 views

CVE-2024-0859

CVE-2024-0859: The Affiliates Manager WordPress plugin is affected by CSRF due to missing/incorrect nonce validation in ListAffiliatesTable.php (process_bulk_action). Affected versions are up to 2.9.34. Unauthenticated attackers can delete affiliates via forged requests if they trick an admin. CV...

4.3CVSS5.2AI score0.00125EPSS

Exploits0References3Affected Software1

Vulnrichment•added 2024/01/05 8:38 a.m.•5 views

CVE-2023-52130 WordPress Affiliates Manager Plugin <= 2.9.31 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in wp.Insider, wpaffiliatemgr Affiliates Manager.This issue affects Affiliates Manager: from n/a through 2.9.31...

4.3CVSS8.7AI score0.0007EPSS

Exploits0References1

Prion•added 2023/07/10 4:15 p.m.•22 views

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in wp.Insider, wpaffiliatemgr Affiliates Manager plugin = 2.9.20 versions...

6.8CVSS8.7AI score0.00068EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2023/07/10 3:5 p.m.•15 views

CVE-2023-28986 WordPress Affiliates Manager Plugin <= 2.9.20 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in wp.Insider, wpaffiliatemgr Affiliates Manager plugin = 2.9.20 versions...

5.4CVSS7.1AI score0.00068EPSS

Exploits0References1

CVE•added 2023/07/10 3:5 p.m.•27 views

CVE-2023-28986

CVE-2023-28986 is a CSRF vulnerability in the WordPress plugin Affiliates Manager (wpaffiliatemgr), affected versions ≤ 2.9.20. The issue is publicly documented across multiple sources (Red Hat, NVD, Patchstack, CVE listings) as a Cross-Site Request Forgery flaw that can be triggered without auth...

8.8CVSS7.1AI score0.00068EPSS

Exploits0References1Affected Software1