Primary

Context

RelyWP Coupon Affiliates Plugin Missing Authorization Vulnerability Allowing Access Control Bypass

Vulnerability

Patched

A missing authorization vulnerability has been identified in the RelyWP Coupon Affiliates WordPress plugin, affecting versions through 6.4.0. This vulnerability allows for exploitation of incorrectly configured access control security levels, potentially leading to unauthorized changes in settings.

Impact

Exploitation of this vulnerability could result in unauthorized changes to plugin settings, disrupting normal functionality or user experience.

Remediation

Users of the RelyWP Coupon Affiliates WordPress plugin should update to version 6.4.2 or later to address this vulnerability. Patchstack users can enable auto-updates for vulnerable plugins.

Added: Aug 20, 2025, 8:30 AM

Updated: Aug 20, 2025, 8:30 AM

Vulnerability Rating

Custom Algorithm

spread

1.0

impact

0.6

exploitability

7.6

remediation

7.7

relevance

0.4

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

1.0

impact

0.6

exploitability

7.6

remediation

7.7

relevance

0.4

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

RelyWP Coupon Affiliates Plugin Missing Authorization Vulnerability Allowing Access Control Bypass

Vulnerability

Impact

Remediation

Affected Products

RelyWP Coupon Affiliates

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating