Lucene search
K

32 matches found

CVE
CVE
added 2024/03/27 11:56 a.m.55 views

CVE-2024-29817

CVE-2024-29817 affects the WordPress plugin affiliate-toolkit (affiliate-toolkit – WordPress Affiliate Plugin). It is a Stored Cross‑Site Scripting vulnerability caused by improper input neutralization during web page generation, specifically related to the ratings/input handling path. Affected v...

6.5CVSS8.6AI score0.00339EPSS
Exploits0References1
NVD
NVD
added 2023/12/19 8:15 p.m.10 views

CVE-2023-45105

URL Redirection to Untrusted Site 'Open Redirect' vulnerability in SERVIT Software Solutions affiliate-toolkit – WordPress Affiliate Plugin.This issue affects affiliate-toolkit – WordPress Affiliate Plugin: from n/a through 3.3.9...

6.1CVSS0.00414EPSS
Exploits0References1
Prion
Prion
added 2023/12/19 8:15 p.m.14 views

Open redirect

URL Redirection to Untrusted Site 'Open Redirect' vulnerability in SERVIT Software Solutions affiliate-toolkit – WordPress Affiliate Plugin.This issue affects affiliate-toolkit – WordPress Affiliate Plugin: from n/a through 3.3.9...

5.8CVSS7.1AI score0.00414EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/12/19 7:48 p.m.84 views

CVE-2023-45105

CVE-2023-45105 is an Open Redirect vulnerability in the WordPress plugin affiliate-toolkit – WordPress Affiliate Plugin for versions ≤ 3.3.9. The root cause is insufficient URL validation in the plugin’s redirect flow (atkpout.php), allowing unauthenticated attackers to redirect users to untruste...

6.1CVSS7AI score0.00414EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2023/11/30 4:15 p.m.11 views

CVE-2023-46086

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in SERVIT Software Solutions affiliate-toolkit – WordPress Affiliate Plugin allows Reflected XSS.This issue affects affiliate-toolkit – WordPress Affiliate Plugin: from n/a through 3.4.3...

7.1CVSS0.00412EPSS
Exploits0References1
OSV
OSV
added 2023/11/30 4:15 p.m.0 views

CVE-2023-46086

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in SERVIT Software Solutions affiliate-toolkit – WordPress Affiliate Plugin allows Reflected XSS.This issue affects affiliate-toolkit – WordPress Affiliate Plugin: from n/a through 3.4.3...

6.1CVSS7.3AI score0.00412EPSS
Exploits0References1
Prion
Prion
added 2023/11/30 4:15 p.m.18 views

Cross site scripting

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in SERVIT Software Solutions affiliate-toolkit – WordPress Affiliate Plugin allows Reflected XSS.This issue affects affiliate-toolkit – WordPress Affiliate Plugin: from n/a through 3.4.3...

5.8CVSS7.1AI score0.00412EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/11/30 3:50 p.m.20 views

CVE-2023-46086 WordPress affiliate-toolkit – WordPress Affiliate Plugin Plugin <= 3.4.3 is vulnerable to Cross Site Scripting (XSS)

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in SERVIT Software Solutions affiliate-toolkit – WordPress Affiliate Plugin allows Reflected XSS.This issue affects affiliate-toolkit – WordPress Affiliate Plugin: from n/a through 3.4.3...

7.1CVSS7.2AI score0.00412EPSS
Exploits0References1
CVE
CVE
added 2023/11/30 3:50 p.m.99 views

CVE-2023-46086

CVE-2023-46086 affects the WordPress plugin “affiliate-toolkit – WordPress Affiliate Plugin” (v

7.1CVSS7.1AI score0.00412EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2023/05/10 8:15 a.m.5 views

CVE-2023-23786

Auth. editor+ Stored Cross-Site Scripting XSS vulnerability in Christof Servit affiliate-toolkit plugin = 3.3.3 versions...

5.4CVSS6.7AI score0.00358EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/05/10 7:19 a.m.10 views

CVE-2023-23786 WordPress affiliate-toolkit – WordPress Affiliate Plugin Plugin <= 3.3.3 is vulnerable to Cross Site Scripting (XSS)

Auth. editor+ Stored Cross-Site Scripting XSS vulnerability in Christof Servit affiliate-toolkit plugin = 3.3.3 versions...

5.9CVSS5.8AI score0.00358EPSS
Exploits0References1
CVE
CVE
added 2023/05/10 7:19 a.m.36 views

CVE-2023-23786

CVE-2023-23786 concerns the WordPress affiliate-toolkit plugin from Christof Servit, with a Stored XSS issue exploitable by users with Editor+ permissions in versions

5.9CVSS5.2AI score0.00358EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder