Auto Affiliate Links — Vulnerabilities & Security Advisories 7

All 7 CVE vulnerabilities found in Auto Affiliate Links, with AI-generated Chinese analysis, references, and POCs.

CVE ID	Title	CVSS	Severity	Published
CVE-2024-9838	Auto Affiliate Links < 6.4.7 - Admin+ SQL Injection	7.2^AI	High^AI	2025-05-15
CVE-2022-45840	WordPress Auto Affiliate Links plugin <= 6.2.1.5 - Unauth. Broken Access Control vulnerability CWE-862	6.5	Medium	2024-12-13
CVE-2024-34386	WordPress Auto Affiliate Links plugin <= 6.4.3.1 - SQL Injection vulnerability CWE-89	7.6	High	2024-05-06
CVE-2024-1843	Auto Affiliate Links <= 6.4.3 - Missing Authorization via aalAddLink CWE-862	4.3	Medium	2024-03-13
CVE-2023-47652	WordPress Auto Affiliate Links Plugin <= 6.4.2.4 is vulnerable to Cross Site Request Forgery (CSRF) CWE-352	7.1	High	2023-11-13
CVE-2023-22689	WordPress Auto Affiliate Links Plugin <= 6.3 is vulnerable to Broken Access Control CWE-352	5.4	Medium	2023-05-20
CVE-2023-25973	WordPress Auto Affiliate Links Plugin <= 6.3.0.2 is vulnerable to Cross Site Request Forgery (CSRF) CWE-352	5.4	Medium	2023-03-13

All 7 known CVE vulnerabilities affecting Auto Affiliate Links with full Chinese analysis, references, and POCs where available.