All 5 CVE vulnerabilities found in affiliate-toolkit – Multi-Network Affiliate & Amazon Product Display, with AI-generated Chinese analysis, references, and POCs.
Vendor: cservit
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-10675 | affiliate-toolkit <= 3.6.7 - Reflected Cross-Site Scripting CWE-79 | 6.1 | Medium | 2024-11-21 |
| CVE-2024-10227 | affiliate-toolkit <= 3.6.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via atkp_product Shortcode CWE-79 | 6.4 | Medium | 2024-10-29 |
| CVE-2024-6562 | affiliate-toolkit <= 3.5.5 - Unauthenticated Full Path Dislcosure CWE-200 | 5.3 | Medium | 2024-08-09 |
| CVE-2024-1851 | affiliate-toolkit – WordPress Affiliate Plugin <= 3.5.4 - Missing Authorization via atkp_create_list CWE-862 | 6.3 | Medium | 2024-03-08 |
| CVE-2024-2298 | affiliate-toolkit – WordPress Affiliate Plugin <= 3.5.4 - Missing Authorization via atkp_import_product CWE-862 | 4.3 | Medium | 2024-03-08 |
All 5 known CVE vulnerabilities affecting affiliate-toolkit – Multi-Network Affiliate & Amazon Product Display with full Chinese analysis, references, and POCs where available.