3 matches found
WordPress Auto Affiliate Links plugin < 6.4.7 - Admin+ SQL Injection vulnerability
Admin+ SQL Injection vulnerability discovered by y4ng0615 in WordPress Plugin Auto Affiliate Links versions 6.4.7...
CVE-2024-9838
The Auto Affiliate Links WordPress plugin before 6.4.7 does not sanitize and escape a parameter before using it in a SQL statement, allowing admins to perform SQL injection attacks...
CVE-2024-9838 Auto Affiliate Links < 6.4.7 - Admin+ SQL Injection
The Auto Affiliate Links WordPress plugin before 6.4.7 does not sanitize and escape a parameter before using it in a SQL statement, allowing admins to perform SQL injection attacks...