All 5 CVE vulnerabilities found in affiliate-toolkit, with AI-generated Chinese analysis, references, and POCs.
Vendor: Christof Servit
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-46231 | WordPress affiliate-toolkit plugin <= 3.7.3 - Cross Site Request Forgery (CSRF) Vulnerability CWE-352 | 5.4 | Medium | 2025-04-22 |
| CVE-2024-37205 | WordPress affiliate-toolkit plugin <= 3.4.4 - Sensitive Data Exposure via Log File vulnerability CWE-532 | 5.3 | Medium | 2024-07-10 |
| CVE-2024-29817 | WordPress affiliate-toolkit – WordPress Affiliate Plugin plugin <= 3.4.5 - Cross Site Scripting (XSS) vulnerability CWE-79 | 6.5 | Medium | 2024-03-27 |
| CVE-2023-5877 | affiliate-toolkit < 3.4.3 - Unauthenticated SSRF | 9.1 | - | 2024-01-01 |
| CVE-2023-23786 | WordPress affiliate-toolkit – WordPress Affiliate Plugin Plugin <= 3.3.3 is vulnerable to Cross Site Scripting (XSS) CWE-79 | 5.9 | Medium | 2023-05-10 |
All 5 known CVE vulnerabilities affecting affiliate-toolkit with full Chinese analysis, references, and POCs where available.