CNNVD-202602-028 Information

CNNVD ID

CNNVD-202602-028

Related CVE

CVE-2021-47911

• CNNVD Published: 2026-02-01

Description (Chinese)

Affiliate Pro是JD Web Designer个人开发者的一个联盟管理系统。 Affiliate Pro 1.7版本存在跨站脚本漏洞，该漏洞源于索引模块输入字段存在多个反射型跨站脚本漏洞，可能导致攻击者注入恶意脚本。

Description (English)

Affiliate Pro is a coalition management system for JD Web Designer personal developers. Version 1.7 of Affiliate Pro has a cross-site script loophole, which stems from multiple reflector-type cross-site script holes in the indexing module input field, which may result in the offender being injected into a malicious script.

Hazard Level

High

Vulnerability Type

跨站脚本

Affected Vendor

个人开发者

Published

2026-02-01

Last Modified

2026-02-24

References

https://codecanyon.net/item/affiliate-pro-affiliate-management-system/12908496 https://jdwebdesigner.com/ https://www.vulncheck.com/advisories/affiliate-pro-reflected-cross-site-scripting-via-index-module https://www.vulnerability-lab.com/get_content.php?id=2281