WC Affiliate – WooCommerce Affiliate Plugin — Vulnerabilities & Security Advisories 2

All 2 CVE vulnerabilities found in WC Affiliate – WooCommerce Affiliate Plugin, with AI-generated Chinese analysis, references, and POCs.

Vendor: codexpert

CVE ID	Title	CVSS	Severity	Published
CVE-2024-12336	WC Affiliate – A Complete WooCommerce Affiliate Plugin <= 2.5.3 - Missing Authorization to Authenticated (Subscriber+) Sensitive Information Exposure via wf-export-all CWE-862	6.5	Medium	2025-03-15
CVE-2024-12334	WC Affiliate – A Complete WooCommerce Affiliate Plugin <= 2.4 - Reflected Cross-Site Scripting CWE-79	6.1	Medium	2025-01-26

All 2 known CVE vulnerabilities affecting WC Affiliate – WooCommerce Affiliate Plugin with full Chinese analysis, references, and POCs where available.

Goal Reached Thanks to every supporter — we hit 100%!

WC Affiliate – WooCommerce Affiliate Plugin — Vulnerabilities & Security Advisories 2