Lucene search
K

11 matches found

CVE
CVE
added 2026/04/01 6:0 a.m.14 views

CVE-2026-2696

The CVE-2026-2696 entry concerns the WordPress plugin Export All URLs (versions before 5.1). Affected component: the plugin’s CSV filename generation uses a predictable pattern based on a random 6‑digit number, and exported CSVs are stored in publicly accessible wp-content/uploads. This enables a...

5.3CVSS5.9AI score0.00301EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:45 a.m.13 views

CVE-2022-0892

The Export All URLs WordPress plugin before 4.2 does not sanitise and escape the CSV filename before outputting it back in the page, leading to a Reflected Cross-Site Scripting...

6.1CVSS6.5AI score0.00788EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 12:10 a.m.6 views

CVE-2022-2638

The Export All URLs WordPress plugin before 4.4 does not validate the path of the file to be removed on the system which is supposed to be the CSV file. This could allow high privilege users to delete arbitrary file from the server...

6.5CVSS6.8AI score0.00952EPSS
Exploits1References1
NVD
NVD
added 2023/05/10 11:15 a.m.11 views

CVE-2022-27856

Auth. editor+ Stored Cross-Site Scripting XSS vulnerability in Atlas Gondal Export All URLs plugin = 4.1 versions...

5.4CVSS4.2AI score0.00383EPSS
Exploits0References1
CVE
CVE
added 2023/05/10 10:28 a.m.47 views

CVE-2022-27856

CVE-2022-27856 is a stored XSS vulnerability in the WordPress Atlas Gondal Export All URLs plugin, affecting versions

5.4CVSS4.4AI score0.00383EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2022/06/15 8:15 p.m.3 views

CVE-2022-29452

Authenticated editor or higher user role Stored Cross-Site Scripting XSS vulnerability in Export All URLs plugin = 4.1 at WordPress...

4.8CVSS5.8AI score0.00489EPSS
Exploits0References2
NVD
NVD
added 2022/06/15 8:15 p.m.10 views

CVE-2022-29452

Authenticated editor or higher user role Stored Cross-Site Scripting XSS vulnerability in Export All URLs plugin = 4.1 at WordPress...

4.8CVSS0.00489EPSS
Exploits0References2
Prion
Prion
added 2022/06/15 8:15 p.m.16 views

Cross site scripting

Authenticated editor or higher user role Stored Cross-Site Scripting XSS vulnerability in Export All URLs plugin = 4.1 at WordPress...

3.5CVSS4.9AI score0.00489EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2022/06/15 7:52 p.m.12 views

CVE-2022-29452 WordPress Export All URLs plugin <= 4.1 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability

Authenticated editor or higher user role Stored Cross-Site Scripting XSS vulnerability in Export All URLs plugin = 4.1 at WordPress...

3.4CVSS4.4AI score0.00489EPSS
Exploits0References2
CVE
CVE
added 2022/06/15 7:52 p.m.82 views

CVE-2022-29452

CVE-2022-29452 affects WordPress Export All URLs plugin versions

4.8CVSS4.3AI score0.00489EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2022/03/21 12:0 a.m.23 views

WordPress Export All URLs plugin <= 4.1 - Reflected Cross-Site Scripting (XSS) vulnerability

Reflected Cross-Site Scripting XSS vulnerability discovered by Asif Nawaz Minhas in WordPress Export All URLs plugin versions = 4.1. Solution Update the WordPress Export All URLs plugin to the latest available version at least 4.2...

6.1CVSS1.8AI score0.00788EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder