CVE-2022-25649

Multiple Improper Access Control vulnerabilities in StoreApps Affiliate For WooCommerce premium plugin <= 4.7.0 at WordPress.

CVSS v3.0 : HIGH

Vector :

Exploitability : 2.8 / Impact : 5.9

References

Link	Resource
https://dzv365zjfbd8v.cloudfront.net/changelogs/affiliate-for-woocommerce/changelog.txt	Release Notes Third Party Advisory
https://patchstack.com/database/vulnerability/affiliate-for-woocommerce/wordpress-affiliate-for-woocommerce-premium-plugin-4-7-0-multiple-improper-access-control-vulnerabilities	Third Party Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:storeapps:affiliate_for_woocommerce:*:*:*:*:*:wordpress:*:*

Information

Published : 2022-08-05 09:15

Updated : 2022-08-08 10:39

NVD link : CVE-2022-25649

Mitre link : CVE-2022-25649

JSON object : View

CWE

CWE-863

Incorrect Authorization

Products Affected

storeapps