3 matches found
CVE-2022-3574
The WPForms Pro WordPress plugin before 1.7.7 does not validate its form data when generating the exported CSV, which could lead to CSV injection...
CVE-2022-3574 WPForms Pro < 1.7.7 - CSV Injection
The WPForms Pro WordPress plugin before 1.7.7 does not validate its form data when generating the exported CSV, which could lead to CSV injection...
CVE-2022-3574
CVE-2022-3574 concerns WPForms Pro for WordPress, where versions before 1.7.7 do not validate form data while generating exported CSVs, enabling potential CSV injection. The vulnerability affects the CSV export logic, with CVSS v3.1 metrics indicating high severity (CRITICAL) across confidentiali...