WordPress Import any XML or CSV File to WordPress plugin <=3.4.6 - Cross-Site Scripting (XSS) vulnerability

2018-03-1300:00:00

Yuji Tounai

patchstack.com

EPSS

0.001

Percentile

45.7%

Cross-Site Scripting (XSS) vulnerability found by Yuji Tounai in WordPress Import any XML or CSV File to WordPress plugin (versions <=3.4.6).

Solution

           Update the WordPress Import any XML or CSV File to WordPress plugin to the latest available version (at least 3.4.7).

wordpress.org/plugins/wp-all-import/#developers

EPSS

0.001

Percentile

45.7%

Related for PATCHSTACK:042B4B660B1121013284D7D6B09A8572