3 matches found
CVE-2022-3897
The WP Affiliate Platform plugin for WordPress is vulnerable to Stored Cross-Site Scripting via several parameters in versions up to, and including, 6.3.9 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level...
CVE-2022-3897
CVE-2022-3897 : The WP Affiliate Platform plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to and including 6.3.9 due to insufficient input sanitization and output escaping. Authenticated attackers with administrator-level permissions (or above) can inject arbitrar...
CVE-2022-3897
The WP Affiliate Platform plugin for WordPress is vulnerable to Stored Cross-Site Scripting via several parameters in versions up to, and including, 6.3.9 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level...