CVE-2023-22680

Name of the Vulnerable Software and Affected Versions Altanic No API Amazon Affiliate plugin versions <= 4.2.2

Description The issue is related to an Authenticated Stored Cross-Site Scripting (XSS) vulnerability. This means that an attacker with admin access can inject malicious scripts into the application, potentially affecting other users. The estimated number of potentially affected devices worldwide is not available.

Recommendations For Altanic No API Amazon Affiliate plugin versions <= 4.2.2, update to a version greater than 4.2.2 to resolve the issue. At the moment, there is no information about additional mitigation measures for this vulnerability.