Affiliate Link Builder Plugin for Amazon Associates – Review Engine

Vulnerabilities 6Slug review-engineLatest version 1.0.41WordPress.org →Closed

N/A Unfixed Closed

2023-07-18≤ 1.0.41

WordPress Affiliate Link Builder Plugin for Amazon Associates – Review Engine Plugin <= 1.0.41 is vulnerable to Cross Site Scripting (XSS)

Patchstack WPScan CVE

N/A Unfixed Closed

2019-02-25≤ 1.0.41

Freemius SDK <= 2.2.3 - Missing Authorization to Arbitrary Options Update

Wordfence

N/A Unfixed Closed

2022-03-04≤ 1.0.41

Freemius SDK <= 2.4.2 - Missing Authorization Checks

Wordfence

N/A Unfixed Closed

≤ 1.0.41

Freemius Library < 2.2.4 - Subscriber+ Arbitrary Option Update

WPScan

N/A Unfixed Closed

2022-02-28≤ 1.0.41

WordPress Affiliate Link Builder Plugin for Amazon Associates – Review Engine plugin <= 1.0.41 - Sensitive Information Disclosure vulnerability

Patchstack

N/A Unfixed Closed

2022-02-28≤ 1.0.41

WordPress Affiliate Link Builder Plugin for Amazon Associates – Review Engine plugin <= 1.0.41 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Patchstack