Vulnerabilities > Storeapps > Affiliate FOR Woocommerce
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-08-05 | CVE-2022-25649 | Unspecified vulnerability in Storeapps Affiliate for Woocommerce Multiple Improper Access Control vulnerabilities in StoreApps Affiliate For WooCommerce premium plugin <= 4.7.0 at WordPress. | 8.8 |
| 2022-08-05 | CVE-2022-36284 | Authorization Bypass Through User-Controlled Key vulnerability in Storeapps Affiliate for Woocommerce Authenticated IDOR vulnerability in StoreApps Affiliate For WooCommerce premium plugin <= 4.7.0 at WordPress allows an attacker to change the PayPal email. | 6.5 |