WPScan
How it worksPricing
Vulnerabilities
WordPressPluginsThemesStatsSubmit vulnerabilities
For developers
StatusAPI detailsCLI scanner
Contact

WordPress Plugin Vulnerabilities

2kb Amazon Affiliates Store <= 2.1.0 - Authenticated Cross-Site Scripting (XSS)

Description

The 2kb Amazon Affiliates Store WordPress plugin was affected by an Authenticated Cross-Site Scripting (XSS) security vulnerability.

Affects Plugins

2kb-amazon-affiliates-store
Fixed in version 2.1.1

References

CVE
CVE-2017-14622
URL
https://plugins.trac.wordpress.org/changeset/1732307/2kb-amazon-affiliates-store
URL
https://packetstormsecurity.com/files/144261/

Classification

Type

XSS

OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79

Miscellaneous

Submitter

ethicalhack3r

Submitter twitter
ethicalhack3r
Verified

No

WPVDB ID
67184c4f-6b5b-49b9-a7d5-e7f8ddee415e

Timeline

Publicly Published

2017-09-20 (about 4 years ago)

Added

2017-09-28 (about 4 years ago)

Last Updated

2020-09-22 (about 1 years ago)

Our Other Services

WPScan WordPress Security Plugin