Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 5:54 a.m.4 views

CVE-2023-4139

The WP Ultimate CSV Importer plugin for WordPress is vulnerable to Sensitive Information Exposure via Directory Listing due to missing restriction in export folder indexing in versions up to, and including, 7.9.8. This makes it possible for unauthenticated attackers to list and view exported file...

7.5CVSS5.9AI score0.0057EPSS
Exploits0References1
NVD
NVD
added 2023/08/04 3:15 a.m.12 views

CVE-2023-4139

The WP Ultimate CSV Importer plugin for WordPress is vulnerable to Sensitive Information Exposure via Directory Listing due to missing restriction in export folder indexing in versions up to, and including, 7.9.8. This makes it possible for unauthenticated attackers to list and view exported file...

7.5CVSS7.4AI score0.0057EPSS
Exploits0References2
CVE
CVE
added 2023/08/04 2:4 a.m.47 views

CVE-2023-4139

The WP Ultimate CSV Importer plugin for WordPress is affected by CVE-2023-4139 (WP Ultimate CSV Importer) and exposes exported files via directory listing due to missing restrictions in the export folder. Affected versions are up to 7.9.8. Unauthenticated attackers could list/view exported files....

7.5CVSS7.5AI score0.0057EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/08/04 2:4 a.m.20 views

CVE-2023-4139 WP Ultimate CSV Importer <= 7.9.8 - Sensitive Information Exposure via Directory Listing

The WP Ultimate CSV Importer plugin for WordPress is vulnerable to Sensitive Information Exposure via Directory Listing due to missing restriction in export folder indexing in versions up to, and including, 7.9.8. This makes it possible for unauthenticated attackers to list and view exported file...

7.5CVSS7.6AI score0.0057EPSS
Exploits0References2
Patchstack
Patchstack
added 2023/08/03 12:0 a.m.14 views

WordPress WP Ultimate CSV Importer Plugin <= 7.9.8 is vulnerable to Sensitive Data Exposure

Software WP Ultimate CSV Importer Type Plugin Vulnerable versions = 7.9.8 Fixed in 7.9.9 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2023-4139 Patch priority Low CVSS severity Low 7.5 Developer Claim ownership PSID 438988920d4b Credits István Márton...

7.5CVSS6.5AI score0.0057EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder