Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-47633

Cross-Site Request Forgery (CSRF) vulnerability in Awin Awin – Advertiser Tracking for WooCommerce allows Cross Site Request Forgery. This issue affects Awin – Advertiser Tracking for WooCommerce: from n/a through 2.0.0.

Published

2025-05-07T15:16:16.503

Last Modified

2025-05-12T19:58:40.697

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 4.3 (MEDIUM)

Weaknesses

Type: Secondary
CWE-352

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	awin	awin_-_advertiser_tracking_for_woocommerce	≤ 2.0.0	Yes

References

https://patchstack.com/database/wordpress/plugin/awin-advertiser-tracking/vulnerability/wordpress-awin-advertiser-tracking-for-woocommerce-plugin-2-0-0-csrf-to-product-feed-regeneration-vulnerability?_s_id=cve Third Party Advisory ([email protected])