5 matches found
CVE-2026-57635
CVE-2026-57635 describes an unauthenticated Cross Site Request Forgery (CSRF) vulnerability in the WordPress plugin FunnelKit Payment Gateway for Stripe WooCommerce , affecting versions up to and including 1.14.0.3 . The public records indicate the issue is a CSRF flaw, with no explicit exploit d...
EUVD-2026-39751
Unauthenticated Cross Site Request Forgery CSRF in FunnelKit Payment Gateway for Stripe WooCommerce = 1.14.0.3 versions...
CVE-2019-15329
The import-users-from-csv-with-meta plugin before 1.14.0.3 for WordPress has CSRF...
CVE-2019-15328
The import-users-from-csv-with-meta plugin before 1.14.0.3 for WordPress has XSS...
WordPress import-users-from-csv-with-meta plugin cross-site scripting vulnerability
WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. import-users-from-csv-with-meta is a user data import plugin used in it. A cross-site scripting vulnerability exists in WordPress...