CVE-2024-38787 WordPress Import and export users and customers plugin <= 1.26.8 - Sensitive Information via Imported File vulnerability

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Codection Import and export users and customers allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Import and export users and customers: from n/a through 1.26.8...

WordPress Import and export users and customers Plugin <= 1.26.8 is vulnerable to Sensitive Data Exposure

Software Import and export users and customers Type Plugin Vulnerable versions = 1.26.8 Fixed in 1.26.9 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2024-38787 Patch priority Low CVSS severity Low 7.5 Developer Codection PSID a113b5766398 Credits emad...

CVE-2024-34815

Missing Authorization vulnerability in Javier Carazo Import and export users and customers import-users-from-csv-with-meta.This issue affects Import and export users and customers: from n/a through = 1.26.5...

CVE-2024-34815 WordPress Import and export users and customers plugin <= 1.26.5 - Broken Access Control vulnerability

Missing Authorization vulnerability in Codection Import and export users and customers.This issue affects Import and export users and customers: from n/a through 1.26.5...

CVE-2024-34815

CVE-2024-34815 affects the WordPress plugin “Import and export users and customers” (Codection) for versions

CVE-2024-22151

Missing Authorization vulnerability in Codection Import and export users and customers.This issue affects Import and export users and customers: from n/a through 1.24.6...

CVE-2024-22151

Missing Authorization vulnerability in Codection Import and export users and customers.This issue affects Import and export users and customers: from n/a through 1.24.6...

CVE-2024-22151 WordPress Import and export users and customers plugin <= 1.24.6 - Broken Access Control vulnerability

Missing Authorization vulnerability in Codection Import and export users and customers.This issue affects Import and export users and customers: from n/a through 1.24.6...

PT-2024-19238 · Unknown · Codection Import/Export Users/Customers

Name of the Vulnerable Software and Affected Versions: Codection Import and export users and customers versions 1.24.6 and earlier Description: The issue is related to a Missing Authorization vulnerability in Codection Import and export users and customers. This vulnerability affects the import a...

WordPress Import and export users and customers Plugin <= 1.26.5 is vulnerable to Broken Access Control

Software Import and export users and customers Type Plugin Vulnerable versions = 1.26.5 Fixed in 1.26.6 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-34815 Patch priority Low CVSS severity Low 5.4 Developer Codection PSID 57826da19f4c Credits emad Requir...

WordPress Import and export users and customers Plugin <= 1.26.2 is vulnerable to PHP Object Injection

Software Import and export users and customers Type Plugin Vulnerable versions = 1.26.2 Fixed in 1.26.3 OWASP Top 10 A3: Injection Classification PHP Object Injection CVE CVE-2024-32817 Patch priority Low CVSS severity Low 4.4 Developer Codection PSID db71a86e52da Credits Trình Vũ Sonicrrrr from...

WordPress Import and export users and customers Plugin <= 1.24.3 is vulnerable to Cross Site Scripting (XSS)

Software Import and export users and customers Type Plugin Vulnerable versions = 1.24.3 Fixed in 1.24.4 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-6624 Patch priority Low CVSS severity Low 6.5 Developer Codection PSID 8dfbaad9de1b Credits...

WordPress Import and export users and customers Plugin <= 1.24.2 is vulnerable to Path Traversal

Software Import and export users and customers Type Plugin Vulnerable versions = 1.24.2 Fixed in 1.24.3 OWASP Top 10 A5: Security Misconfiguration Classification Path Traversal CVE CVE-2023-6583 Patch priority Low CVSS severity Low 6.6 Developer Codection PSID c0a785f9e590 Credits Labda Required...

CVE-2018-20101

The codection "Import users from CSV with meta" plugin before 1.12.1 for WordPress allows XSS via the value of a cell...

Design/Logic Flaw

The codection "Import users from CSV with meta" plugin before 1.12.1 for WordPress allows XSS via the value of a cell...