Fantasticplugins Sumo Affiliates Pro vulnerabilities
3 known vulnerabilities affecting fantasticplugins/sumo_affiliates_pro.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2025-32291P2CRITICALCVSS 10.0≤ 11.1.02025-06-09
CVE-2025-32291 [CRITICAL] CWE-434 CVE-2025-32291: Unrestricted Upload of File with Dangerous Type vulnerability in FantasticPlugins SUMO Affiliates Pr
Unrestricted Upload of File with Dangerous Type vulnerability in FantasticPlugins SUMO Affiliates Pro affs allows Using Malicious Files.This issue affects SUMO Affiliates Pro: from n/a through < 11.1.0.
nvd
CVE-2026-24989P3CRITICALCVSS 9.8≤ 11.4.02026-03-25
CVE-2026-24989 [CRITICAL] CWE-502 CVE-2026-24989: Deserialization of Untrusted Data vulnerability in FantasticPlugins SUMO Affiliates Pro affs allows
Deserialization of Untrusted Data vulnerability in FantasticPlugins SUMO Affiliates Pro affs allows Object Injection.This issue affects SUMO Affiliates Pro: from n/a through < 11.4.0.
nvd
CVE-2025-64228P4MEDIUMCVSS 4.3≤ 11.0.02025-10-29
CVE-2025-64228 [MEDIUM] CWE-497 CVE-2025-64228: Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Fantasti
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in FantasticPlugins SUMO Affiliates Pro affs allows Retrieve Embedded Sensitive Data.This issue affects SUMO Affiliates Pro: from n/a through <= 11.0.0.
nvd