Wp Import Export Lite@* Security Vulnerabilities and Issues — Wp Import Export Lite@* CVE List

Lucene search

VjinfotechWp Import Export Lite*

3 matches found

CVE•added 2022/01/18 5:15 p.m.•56 views

CVE-2022-0236

The WP Import Export WordPress plugin (both free and premium versions) is vulnerable to unauthenticated sensitive data disclosure due to a missing capability check on the download function wpie_process_file_download found in the ~/includes/classes/class-wpie-general.php file. This made it possible ...

7.5CVSS7.3AI score0.3739EPSS

CVE•added 2024/04/07 6:15 p.m.•46 views

CVE-2024-31308

Deserialization of Untrusted Data vulnerability in VJInfotech WP Import Export Lite.This issue affects WP Import Export Lite: from n/a through 3.9.26.

4.4CVSS5.1AI score0.0009EPSS

CVE•added 2025/04/22 6:15 a.m.•34 views

CVE-2025-2839

The WP Import Export Lite plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘wpiePreviewData’ function in all versions up to, and including, 3.9.27 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributo...

6.4CVSS5.7AI score0.00043EPSS