cbcvebase.

Elliot Sowersby Relywp Coupon Affiliates vulnerabilities

5 known vulnerabilities affecting elliot_sowersby/relywp_coupon_affiliates.

Total CVEs
5
CISA KEV
0
Public exploits
0
Exploited in wild
1
Severity breakdown
HIGH1MEDIUM4

Vulnerabilities

Page 1 of 1
CVE-2024-29125P2HIGHCVSS 7.1Exploited≤ 5.12.72024-03-19
CVE-2024-29125 [HIGH] CWE-79 CVE-2024-29125: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability i Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Elliot Sowersby / RelyWP Coupon Affiliates woo-coupon-usage.This issue affects Coupon Affiliates: from n/a through <= 5.12.7.
nvd
CVE-2025-54025P4MEDIUMCVSS 6.5≤ 6.4.02025-08-20
CVE-2025-54025 [MEDIUM] CWE-862 CVE-2025-54025: Missing Authorization vulnerability in Elliot Sowersby / RelyWP Coupon Affiliates woo-coupon-usage a Missing Authorization vulnerability in Elliot Sowersby / RelyWP Coupon Affiliates woo-coupon-usage allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Coupon Affiliates: from n/a through <= 6.4.0.
nvd
CVE-2025-62884P4MEDIUMCVSS 5.3≤ 7.2.02025-10-27
CVE-2025-62884 [MEDIUM] CWE-862 CVE-2025-62884: Missing Authorization vulnerability in Elliot Sowersby / RelyWP Coupon Affiliates woo-coupon-usage a Missing Authorization vulnerability in Elliot Sowersby / RelyWP Coupon Affiliates woo-coupon-usage allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Coupon Affiliates: from n/a through <= 7.2.0.
nvd
CVE-2025-59567P4MEDIUMCVSS 5.5≤ 6.8.02025-09-22
CVE-2025-59567 [MEDIUM] CWE-862 CVE-2025-59567: Missing Authorization vulnerability in Elliot Sowersby / RelyWP Coupon Affiliates woo-coupon-usage a Missing Authorization vulnerability in Elliot Sowersby / RelyWP Coupon Affiliates woo-coupon-usage allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Coupon Affiliates: from n/a through <= 6.8.0.
nvd
CVE-2025-54022P4MEDIUMCVSS 6.5≤ 6.4.02025-07-16
CVE-2025-54022 [MEDIUM] CWE-352 CVE-2025-54022: Cross-Site Request Forgery (CSRF) vulnerability in Elliot Sowersby / RelyWP Coupon Affiliates woo-co Cross-Site Request Forgery (CSRF) vulnerability in Elliot Sowersby / RelyWP Coupon Affiliates woo-coupon-usage allows Cross Site Request Forgery.This issue affects Coupon Affiliates: from n/a through <= 6.4.0.
nvd
Elliot Sowersby Relywp Coupon Affiliates vulnerabilities | cvebase