Lucene search
Slawek ZytkoPATCHSTACK:C5CB559E12302BAAA58F98FEB41F035AHistoryDec 13, 2018 - 12:00 a.m.
WordPress Import users from CSV with meta plugin <= 1.12 - Cross-Site Scripting (XSS) vulnerability
2018-12-1300:00:00
Slawek Zytko
patchstack.com
4
0.001 Low
EPSS
Percentile
36.3%
Cross-Site Scripting (XSS) vulnerability discovered by Slawek Zytko in WordPress Import users from CSV with meta plugin (versions <= 1.12).
Solution
Update the WordPress Import users from CSV with meta plugin to the latest available version (at least 1.12.1).
| CPE | Name | Operator | Version |
|---|---|---|---|
| import and export users and customers | le | 1.12 |
Related
openvas
openvas
WordPress Import users from CSV with meta Plugin < 1.12.1 XSS Vulnerability
2019-02-18 00:00:00
cve
cve
CVE-2018-20101
2018-12-12 16:29:01
wpvulndb
wpvulndb
Import users from CSV with meta <= 1.12 - Import Cross-Site Scripting (XSS)
2018-12-11 00:00:00
prion
prion
Design/Logic Flaw
2018-12-12 16:29:00
cvelist
cvelist
CVE-2018-20101
2018-12-12 16:00:00
nvd
nvd
CVE-2018-20101
2018-12-12 16:29:01