Vulnerability CVE-2022-2798
Published: 2022-09-16

Description:
The Affiliates Manager WordPress plugin before 2.9.14 does not validate and sanitise the affiliate data, which could allow users registering as affiliate to perform CSV injection attacks against an admin exporting the data

Type:

CWE-1236

 References:
https://wpscan.com/vulnerability/f169567d-c682-4abe-94df-a9d00be90edd
Copyright 2026, cxsecurity.com

 

Back to Top