cleantalk
Vulnerabilities and Security Researches

WooCommerce Cloak Affiliate Links, CVE-2025-24647

CVE, Research URL

CVE-2025-24647

Home page URL

Security reports for WooCommerce Cloak Affiliate Links

Application

WooCommerce Cloak Affiliate Links

Published on
Jan 24, 2025
Research Description
Cross-Site Request Forgery (CSRF) vulnerability in datafeedr.com WooCommerce Cloak Affiliate Links allows Cross Site Request Forgery. This issue affects WooCommerce Cloak Affiliate Links: from n/a through 1.0.35.
Affected versions
Min -, max 1.0.36.
Status
vulnerable
Previous vulnerability researches
Affiliate Links Manager (CVE-2025-27273) , Mar 01, 2025
WooCommerce Cloak Affiliate Links (CVE-2025-24647) , Jan 26, 2025
WooCommerce Cloak Affiliate Links (CVE-2024-1308) , Jun 06, 2024
Affiliate Links Lite (CVE-2025-32639) , Apr 17, 2025
Affiliate Links Lite (CVE-2024-13556) , Feb 19, 2025
New vulnerability
WordPress Job Board and Recruitment Plugin – JobWP (CVE-2025-2010) , Apr 20, 2025
WP Logger (CVE-2025-39456) , Apr 20, 2025
visualslider Sldier (CVE-2025-23448) , Apr 20, 2025
RSS Manager (CVE-2025-39418) , Apr 20, 2025
Contact Form vCard Generator (CVE-2025-39521) , Apr 20, 2025