Flamescorpion Auto_affiliate_links

5 CVEs affecting Flamescorpion Auto_affiliate_links. Latest disclosed: 2025-05-15. Critical: 0, High: 1.

Top CVEs affecting Flamescorpion Auto_affiliate_links
CVESeverityScorePublishedSummary
CVE-2023-47652High7.12023-11-13Cross-Site Request Forgery (CSRF) vulnerability in Lucian Apostol Auto Affiliate Links allows Stored XSS.This issue affects Auto Affiliate Links: from n/a thro…
CVE-2024-9838Medium5.42025-05-15The Auto Affiliate Links WordPress plugin before 6.4.7 does not sanitize and escape a parameter before using it in a SQL statement, allowing admins to perform…
CVE-2023-25973Medium5.42023-03-13Cross-Site Request Forgery (CSRF) vulnerability in Lucian Apostol Auto Affiliate Links plugin <= 6.3.0.2 versions.
CVE-2023-22689Medium4.62023-05-20Cross-Site Request Forgery (CSRF) vulnerability in Lucian Apostol Auto Affiliate Links plugin <= 6.3 versions.
CVE-2024-1843Medium4.32024-03-13The Auto Affiliate Links plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the aalAddLink function i…