3 matches found
WordPress Affiliates Manager Plugin < 2.9.14 Multiple Vulnerabilities
The WordPress plugin SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wpaffiliatemanager:affiliatesmanager"; ifdescription...
CVE-2022-2798
creationtimestamp| type| source ---|---|--- 2022-09-16 12:38:56+00:00| seen| https://t.me/cibsecurity/49864...
CVE-2022-2798
CVE-2022-2798 affects the WordPress plugin Affiliates Manager prior to 2.9.14. The vulnerability arises because the plugin does not validate or sanitize affiliate data, enabling CSV injection when admins export affiliates via the CSV export function. This could allow an attacker registering as an...