Lucene search
K

44 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 3:37 a.m.5 views

CVE-2023-30475

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Elliot Sowersby, RelyWP WooCommerce Affiliate Plugin – Coupon Affiliates plugin = 5.4.5 versions...

7.1CVSS5.9AI score0.00379EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/04/17 5:38 p.m.8 views

WordPress Coupon Affiliates plugin <= 6.3.0 - Reflected Cross-Site Scripting via 'commission_summary' Parameter vulnerability

Reflected Cross-Site Scripting via 'commissionsummary' Parameter vulnerability discovered by wesley wcraft in WordPress Plugin Coupon Affiliates versions = 6.3.0...

6.1CVSS7.3AI score0.00373EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2025/04/17 4:15 p.m.15 views

CVE-2025-39554

Missing Authorization vulnerability in Elliot Sowersby / RelyWP AI Text to Speech ai-text-to-speech allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects AI Text to Speech: from n/a through = 3.0.3...

6.5CVSS0.00273EPSS
Exploits0References1
CVE
CVE
added 2025/04/17 3:46 p.m.45 views

CVE-2025-39554

CVE-2025-39554 is a Missing Authorization / broken access control vulnerability in the WordPress AI Text to Speech plugin (versions ≤ 3.0.3). Attack context per available data indicates unprivileged, network-scoped access could be abused due to incorrectly configured access control levels, enabli...

6.5CVSS7.2AI score0.00273EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/04/17 6:43 a.m.4 views

WordPress AI Text to Speech plugin <= 3.0.3 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Mika in WordPress Plugin AI Text to Speech versions = 3.0.3...

6.5CVSS8.3AI score0.00273EPSS
Exploits0Affected Software1
Positive Technologies
Positive Technologies
added 2025/04/17 12:0 a.m.6 views

PT-2025-17180 · Unknown · Relywp Ai Text To Speech

Name of the Vulnerable Software and Affected Versions: RelyWP AI Text to Speech versions 3.0.3 and earlier Description: The issue is related to a Missing Authorization vulnerability, which allows exploiting incorrectly configured access control security levels. Recommendations: For RelyWP AI Text...

6.5CVSS6.9AI score0.00273EPSS
Exploits0References3
NVD
NVD
added 2024/03/19 3:15 p.m.10 views

CVE-2024-29125

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Elliot Sowersby / RelyWP Coupon Affiliates woo-coupon-usage.This issue affects Coupon Affiliates: from n/a through = 5.12.7...

7.1CVSS6.9AI score0.00402EPSS
Exploits0References2
CVE
CVE
added 2024/03/19 2:25 p.m.54 views

CVE-2024-29125

CVE-2024-29125 is a Reflected XSS in the WooCommerce Coupon Affiliates plugin (Coupon Affiliates) for WordPress. Affected: Coupon Affiliates up to version 5.12.7. Root cause: Improper neutralization of input during web page generation. Impact: Reflected cross-site scripting possible in pages usin...

7.1CVSS7.2AI score0.00402EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/03/19 12:0 a.m.10 views

PT-2024-22746 · Unknown · Relywp Coupon Affiliates

Name of the Vulnerable Software and Affected Versions: RelyWP Coupon Affiliates versions through 5.12.7 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, allowing Reflected XSS. Recommendations: For versions throu...

7.1CVSS9.3AI score0.00402EPSS
Exploits0References5
Patchstack
Patchstack
added 2024/03/16 12:0 a.m.19 views

WordPress Coupon Affiliates Plugin <= 5.12.7 is vulnerable to Cross Site Scripting (XSS)

Software Coupon Affiliates Type Plugin Vulnerable versions = 5.12.7 Fixed in 5.12.8 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-29125 Patch priority Medium CVSS severity Medium 7.1 Developer RelyWP PSID 81253acd1aca Credits stealthcopter Required privilege...

7.1CVSS6.5AI score0.00402EPSS
Exploits0References2Affected Software1
VulnCheck KEV
VulnCheck KEV
added 2024/03/16 12:0 a.m.9 views

VulnCheck KEV: CVE-2024-29125

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Elliot Sowersby / RelyWP Coupon Affiliates woo-coupon-usage.This issue affects Coupon Affiliates: from n/a through = 5.12.7...

7.3AI score0.00402EPSS
Exploits0References1
NVD
NVD
added 2023/08/14 2:15 p.m.18 views

CVE-2023-30475

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Elliot Sowersby, RelyWP WooCommerce Affiliate Plugin – Coupon Affiliates plugin = 5.4.5 versions...

7.1CVSS6.2AI score0.00379EPSS
Exploits0References1
OSV
OSV
added 2023/08/14 2:15 p.m.2 views

CVE-2023-30475

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Elliot Sowersby, RelyWP WooCommerce Affiliate Plugin – Coupon Affiliates plugin = 5.4.5 versions...

6.1CVSS7.3AI score0.00379EPSS
Exploits0References1
Prion
Prion
added 2023/08/14 2:15 p.m.24 views

Cross site scripting

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Elliot Sowersby, RelyWP WooCommerce Affiliate Plugin – Coupon Affiliates plugin = 5.4.5 versions...

5.8CVSS6AI score0.00379EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/08/14 1:53 p.m.39 views

CVE-2023-30475

CVE-2023-30475 : Unauthenticated reflected XSS in the WordPress plugin “Coupon Affiliates – WooCommerce Affiliate Plugin” (Coupon Affiliates) up to version 5.4.5. Public sources identify the vulnerability as a reflected cross-site scripting issue triggered via the page parameter, with the exploit...

7.1CVSS6AI score0.00379EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2023/07/18 12:0 a.m.7 views

WordPress Coupon Affiliates Plugin < 5.6.0 is vulnerable to Cross Site Scripting (XSS)

Software Coupon Affiliates Type Plugin Vulnerable versions 5.6.0 Fixed in 5.6.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer RelyWP PSID de39047c211f Credits Rafie Muhammad Patchstack Required...

6.8AI score0.00284EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2023/06/26 6:15 a.m.3 views

CVE-2023-28992

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Elliot Sowersby, RelyWP Coupon Affiliates – WooCommerce Affiliate Plugin plugin = 5.4.3 versions...

6.1CVSS7.3AI score0.00382EPSS
Exploits0References1
Prion
Prion
added 2023/06/26 6:15 a.m.16 views

Cross site scripting

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Elliot Sowersby, RelyWP Coupon Affiliates – WooCommerce Affiliate Plugin plugin = 5.4.3 versions...

5.8CVSS6AI score0.00382EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/06/26 5:21 a.m.27 views

CVE-2023-28992 WordPress Coupon Affiliates Plugin <= 5.4.3 is vulnerable to Cross Site Scripting (XSS)

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Elliot Sowersby, RelyWP Coupon Affiliates – WooCommerce Affiliate Plugin plugin = 5.4.3 versions...

7.1CVSS6.3AI score0.00382EPSS
Exploits0References1
CVE
CVE
added 2023/06/26 5:21 a.m.34 views

CVE-2023-28992

CVE-2023-28992 is an unauthenticated reflected XSS in the Coupon Affiliates – WooCommerce Affiliate Plugin (RelyWP) up to version 5.4.3. Root cause: untrusted input echoed back without proper sanitization. Impact described as Cross-Site Scripting with potential script execution in affected pages....

7.1CVSS6AI score0.00382EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder