Lucene search
K

12 matches found

Patchstack
Patchstack
added 2025/05/30 9:47 p.m.17 views

WordPress CSV Mass Importer plugin <= 1.2 - Admin+ Arbitrary File Upload vulnerability

Admin+ Arbitrary File Upload vulnerability discovered by Khaled Alenazi Nxploited in WordPress Plugin CSV Mass Importer versions = 1.2...

7.2CVSS8.3AI score0.00489EPSS
Exploits3References1Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/19 6:9 a.m.13 views

CVE-2025-4190

The CSV Mass Importer WordPress plugin through 1.2 does not properly validate uploaded files, allowing high privilege users such as admin to upload arbitrary files on the server even when they should not be allowed to for example in multisite setup...

7.2CVSS6.8AI score0.00489EPSS
Exploits3References1
NVD
NVD
added 2025/05/17 6:15 a.m.43 views

CVE-2025-4190

The CSV Mass Importer WordPress plugin through 1.2 does not properly validate uploaded files, allowing high privilege users such as admin to upload arbitrary files on the server even when they should not be allowed to for example in multisite setup...

7.2CVSS0.00489EPSS
Exploits3References1
OSV
OSV
added 2025/05/17 6:15 a.m.8 views

CVE-2025-4190

The CSV Mass Importer WordPress plugin through 1.2 does not properly validate uploaded files, allowing high privilege users such as admin to upload arbitrary files on the server even when they should not be allowed to for example in multisite setup...

7.2CVSS5.9AI score0.00489EPSS
Exploits3References1
Vulnrichment
Vulnrichment
added 2025/05/17 6:0 a.m.12 views

CVE-2025-4190 CSV Mass Importer <= 1.2 - Admin+ Arbitrary File Upload

The CSV Mass Importer WordPress plugin through 1.2 does not properly validate uploaded files, allowing high privilege users such as admin to upload arbitrary files on the server even when they should not be allowed to for example in multisite setup...

6.9AI score0.00489EPSS
Exploits3References1
Cvelist
Cvelist
added 2025/05/17 6:0 a.m.45 views

CVE-2025-4190 CSV Mass Importer <= 1.2 - Admin+ Arbitrary File Upload

The CSV Mass Importer WordPress plugin through 1.2 does not properly validate uploaded files, allowing high privilege users such as admin to upload arbitrary files on the server even when they should not be allowed to for example in multisite setup...

0.00489EPSS
Exploits3References1
CVE
CVE
added 2025/05/17 6:0 a.m.59 views

CVE-2025-4190

CVE-2025-4190 affects the WordPress plugin CSV Mass Importer (v ≤ 1.2). The issue is improper validation of uploaded files, allowing high-privilege users (e.g., admins) to upload arbitrary files on the server (notably in multisite setups). Several sources confirm an admin+ arbitrary file upload v...

7.2CVSS7AI score0.00489EPSS
Exploits3References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/05/17 12:0 a.m.10 views

PT-2025-21780 · WordPress · Csv Mass Importer

Name of the Vulnerable Software and Affected Versions: CSV Mass Importer WordPress plugin versions 1.2 and earlier Description: The issue concerns the CSV Mass Importer WordPress plugin, which does not properly validate uploaded files. This allows high-privilege users, such as administrators, to...

7.2CVSS7.5AI score0.00489EPSS
Exploits3References6
CNNVD
CNNVD
added 2025/05/17 12:0 a.m.8 views

WordPress plugin CSV Mass Importer 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

7.2CVSS7.5AI score0.00489EPSS
Exploits3References3
GithubExploit
GithubExploit
added 2025/05/15 3:51 p.m.303 views

Exploit for CVE-2025-4190

CVE-2025-4190 — WordPress CSV Mass Importer ≤ 1.2 Arbitrary Fi...

7.2CVSS8AI score0.00489EPSS
Exploits3
GithubExploit
GithubExploit
added 2025/05/07 10:56 a.m.493 views

Exploit for CVE-2025-4190

CVE-2025-4190 — WordPress CSV Mass Importer ≤ 1.2 Arbitrary Fi...

7.2CVSS8AI score0.00489EPSS
Exploits3
Packet Storm News
Packet Storm News
added 2025/05/07 12:0 a.m.14 views

WordPress CSV Mass Importer 1.2 Shell Upload

WordPress CSV Mass Importer plugin versions 1.2 and below suffer from a remote shell upload vulnerability...

7.2CVSS7.6AI score0.00489EPSS
Exploits3
Rows per page
Query Builder