Lucene search
K

27 matches found

NVD
NVD
added 2023/12/19 8:15 p.m.10 views

CVE-2023-45105

URL Redirection to Untrusted Site 'Open Redirect' vulnerability in SERVIT Software Solutions affiliate-toolkit – WordPress Affiliate Plugin.This issue affects affiliate-toolkit – WordPress Affiliate Plugin: from n/a through 3.3.9...

6.1CVSS0.00414EPSS
Exploits0References1
Prion
Prion
added 2023/12/19 8:15 p.m.14 views

Open redirect

URL Redirection to Untrusted Site 'Open Redirect' vulnerability in SERVIT Software Solutions affiliate-toolkit – WordPress Affiliate Plugin.This issue affects affiliate-toolkit – WordPress Affiliate Plugin: from n/a through 3.3.9...

5.8CVSS7.1AI score0.00414EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/12/19 7:48 p.m.84 views

CVE-2023-45105

CVE-2023-45105 is an Open Redirect vulnerability in the WordPress plugin affiliate-toolkit – WordPress Affiliate Plugin for versions ≤ 3.3.9. The root cause is insufficient URL validation in the plugin’s redirect flow (atkpout.php), allowing unauthenticated attackers to redirect users to untruste...

6.1CVSS7AI score0.00414EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2023/11/30 4:15 p.m.11 views

CVE-2023-46086

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in SERVIT Software Solutions affiliate-toolkit – WordPress Affiliate Plugin allows Reflected XSS.This issue affects affiliate-toolkit – WordPress Affiliate Plugin: from n/a through 3.4.3...

7.1CVSS0.00412EPSS
Exploits0References1
OSV
OSV
added 2023/11/30 4:15 p.m.0 views

CVE-2023-46086

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in SERVIT Software Solutions affiliate-toolkit – WordPress Affiliate Plugin allows Reflected XSS.This issue affects affiliate-toolkit – WordPress Affiliate Plugin: from n/a through 3.4.3...

6.1CVSS7.3AI score0.00412EPSS
Exploits0References1
Prion
Prion
added 2023/11/30 4:15 p.m.18 views

Cross site scripting

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in SERVIT Software Solutions affiliate-toolkit – WordPress Affiliate Plugin allows Reflected XSS.This issue affects affiliate-toolkit – WordPress Affiliate Plugin: from n/a through 3.4.3...

5.8CVSS7.1AI score0.00412EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/11/30 3:50 p.m.21 views

CVE-2023-46086 WordPress affiliate-toolkit – WordPress Affiliate Plugin Plugin <= 3.4.3 is vulnerable to Cross Site Scripting (XSS)

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in SERVIT Software Solutions affiliate-toolkit – WordPress Affiliate Plugin allows Reflected XSS.This issue affects affiliate-toolkit – WordPress Affiliate Plugin: from n/a through 3.4.3...

7.1CVSS7.2AI score0.00412EPSS
Exploits0References1
Rows per page
Query Builder