Lucene search
Affiliate-Toolkit Security Vulnerabilities - CVSS Score 9 - 10
cve
The affiliate-toolkit WordPress plugin before 3.4.3 lacks authorization and authentication for requests to it's affiliate-toolkit-starter/tools/atkp_imagereceiver.php endpoint, allowing unauthenticated visitors to make requests to arbitrary URL's, including RFC1918 private addresses, leading to a S...
9.8CVSS
9.7AI Score
0.001EPSS
2024-01-01 03:15 PM
27