Vulnerabilities > Ifeelweb

DATE CVE VULNERABILITY TITLE RISK
2024-09-10 CVE-2024-8478 Code Injection vulnerability in Ifeelweb Affiliate Super Assistent
The The Affiliate Super Assistent plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 1.5.3.
network
low complexity
ifeelweb CWE-94
7.3
2023-11-22 CVE-2023-47766 Unspecified vulnerability in Ifeelweb Post Status Notifier Lite 1.10.1
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Timo Reith Post Status Notifier Lite plugin <= 1.11.0 versions.
network
low complexity
ifeelweb
6.1
2023-11-12 CVE-2023-27417 Unspecified vulnerability in Ifeelweb Affiliate Super Assistent
Cross-Site Request Forgery (CSRF) vulnerability in Timo Reith Affiliate Super Assistent plugin <= 1.5.1 versions.
network
low complexity
ifeelweb
8.8
2023-01-09 CVE-2022-4325 Unspecified vulnerability in Ifeelweb Post Status Notifier Lite
The Post Status Notifier Lite WordPress plugin before 1.10.1 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which can be used against high privilege users such as admin.
network
low complexity
ifeelweb
6.1