4 matches found
CVE-2023-41798
Improper Neutralization of Formula Elements in a CSV File vulnerability in wpWax Directorist – WordPress Business Directory Plugin with Classified Ads Listing.This issue affects Directorist – WordPress Business Directory Plugin with Classified Ads Listings: from n/a through 7.7.1...
WordPress Business Directory Plugin Plugin <= 6.4.2 is vulnerable to SQL Injection
Software Business Directory Plugin Type Plugin Vulnerable versions = 6.4.2 Fixed in 6.4.3 OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2024-4443 Patch priority High CVSS severity High 9.3 Developer Claim ownership PSID e684c455bb1f Credits Krzysztof Zając Required privilege...
CVE-2023-41798
CVE-2023-41798 is a CSV injection vulnerability affecting the Directorist – WordPress Business Directory Plugin with Classified Ads Listings, specifically versions 7.7.1 and earlier. The root cause is improper neutralization of formulas in CSV files used by the plugin. Impact involves potential d...
WordPress Business Directory Plugin <= 5.11.1 - Arbitrary Listing Export vulnerability
Arbitrary Listing Export vulnerability discovered by 0xB9 in WordPress Business Directory Plugin versions = 5.11.1. Solution Update the WordPress Business Directory Plugin to the latest available version at least 5.11.2...