cleantalk
Vulnerabilities and Security Researches

WooCommerce Affiliate Plugin – Coupon Affiliates, CVE-2024-29125

CVE, Research URL

CVE-2024-29125

Home page URL

Security reports for WooCommerce Affiliate Plugin – Coupon Affiliates

Application

WooCommerce Affiliate Plugin – Coupon Affiliates

Published on
Mar 19, 2024
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Elliot Sowersby, RelyWP Coupon Affiliates allows Reflected XSS.This issue affects Coupon Affiliates: from n/a through 5.12.7.
Affected versions
Min -, max 5.12.8.
Status
vulnerable
Previous vulnerability researches
WooCommerce Affiliate Plugin – Coupon Affiliates (CVE-2025-3598) , Apr 20, 2025
WooCommerce Affiliate Plugin – Coupon Affiliates (CVE-2024-12421) , Dec 15, 2024
WooCommerce Affiliate Plugin – Coupon Affiliates (CVE-2023-30475) , Jun 06, 2024
WooCommerce Affiliate Plugin – Coupon Affiliates (CVE-2022-0818) , Jun 06, 2024
WooCommerce Affiliate Plugin – Coupon Affiliates (CVE-2023-28992) , Jun 06, 2024
New vulnerability
Wallet System for WooCommerce – Digital Wallet, Cashback Rewards, Recharge User Wallets, View Transaction History (CVE-2025-54041) , Jul 19, 2025
Chatbox Manager (CVE-2025-48167) , Jul 19, 2025
Zuppler Online Ordering (CVE-2025-6053) , Jul 19, 2025
Counter live visitors for WooCommerce (CVE-2025-7359) , Jul 19, 2025
AntiSpam for Contact Form 7 (CVE-2025-54020) , Jul 19, 2025