← Back

Affiliate Me

affiliate_me

Vendor: Powerstonegh • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2023-53917
1Powerstonegh
1Affiliate Me
Dec 31, 2025
Dec 17, 2025
8.7 HIGH· v4
6.5 MEDIUM· v3
N/A· v2
Affiliate Me version 5.0.1 contains a SQL injection vulnerability in the admin.php endpoint that allows authenticated administrators to manipulate database queries. Attackers can exploit the 'id' parameter with crafted u...Show more
Affiliate Me version 5.0.1 contains a SQL injection vulnerability in the admin.php endpoint that allows authenticated administrators to manipulate database queries. Attackers can exploit the 'id' parameter with crafted union-based queries to extract sensitive user information including usernames and password hashes.Show less