Aa-team Woocommerce Envato Affiliates
2 CVEs affecting Aa-team Woocommerce Envato Affiliates. Latest disclosed: 2026-05-26. Critical: 0, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-14361 | High | 7.1 | 2026-05-26 | Missing Authorization vulnerability in AA-Team Woocommerce Envato Affiliates allows Accessing Functionality Not Properly Constrained by ACLs. This issue affec… |
CVE-2025-53297 | High | 7.1 | 2025-10-22 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in AA-Team Woocommerce Envato Affiliates wooenvato allows Re… |