cleantalk
Vulnerabilities and Security Researches

Multilevel Referral Affiliate Plugin for WooCommerce, 127912ebc0a6ce0dc350a25618a0a12e35434240

CVE, Research URL

127912ebc0a6ce0dc350a25618a0a12e35434240

Home page URL

Security reports for Multilevel Referral Affiliate Plugin for WooCommerce

Application

Multilevel Referral Affiliate Plugin for WooCommerce

Published on
Jul 18, 2023
Research Description
Multilevel Referral Affiliate Plugin for WooCommerce [multilevel-referral-plugin-for-woocommerce] < 2.23 (closed) WordPress Multilevel Referral Affiliate Plugin for WooCommerce Plugin < 2.23 is vulnerable to Cross Site Scripting (XSS) Update the plugin to the latest version. Rafie Muhammad (Patchstack) discovered and reported this Cross Site Scripting (XSS) vulnerability in WordPress Multilevel Referral Affiliate Plugin for WooCommerce Plugin. This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site. This vulnerability has been fixed in version 2.23.
Affected versions
max 2.23.
Status
vulnerable
Previous vulnerability researches
Multilevel Referral Affiliate Plugin for WooCommerce (CVE-2024-53742) , Dec 03, 2024
Multilevel Referral Affiliate Plugin for WooCommerce (CVE-2024-13750) , Mar 03, 2025
Multilevel Referral Affiliate Plugin for WooCommerce (127912ebc0a6ce0dc350a25618a0a12e35434240) , Jun 06, 2024
New vulnerability
Security & Malware scan by CleanTalk , Apr 03, 2026
OOPSpam Anti-Spam (CVE-2026-32544) , Mar 31, 2026
NotificationX &#8211; Best FOMO, Social Proof, WooCommerce Sales Popup &amp; Notification Bar Plugin With Elementor (CVE-2026-27042) , Mar 31, 2026
The Conference (CVE-2026-32335) , Mar 31, 2026
WP Booking System &#8211; Booking Calendar (CVE-2025-68515) , Mar 31, 2026