CVE-2025-47660 Information

Description

Deserialization of Untrusted Data vulnerability in Codexpert Inc WC Affiliate allows Object Injection. This issue affects WC Affiliate: from n/a through 2.9.1.

Reference

https://patchstack.com/database/wordpress/plugin/wc-affiliate/vulnerability/wordpress-wc-affiliate-2-8-php-object-injection-vulnerability?_s_id=cve