2 matches found
CVE-2016-11000
CVE-2016-11000 affects the WordPress plugin wp-ultimate-exporter (versions up to 1.1). The vulnerability is an SQL injection in the export_type_name parameter, with CVSS vectors indicating high/moderate impact (CVSS v3.1: CRITICAL, 9.8; CVSS v2.0: HIGH, 7.5). The reports confirm the vulnerable co...
CVE-2018-20968
The CVE-2018-20968 issue affects the WordPress wp-ultimate-exporter plugin prior to version 1.4.2. It is a CSRF vulnerability where requests from an untrusted origin can be forged because the plugin does not adequately verify that requests come from trusted users. Impact details in public sources...