Wordpress Comments Import And Export Security Vulnerabilities and Issues — Wordpress Comments Import And Export CVE List

Lucene search

WebtoffeeWordpress Comments Import And Export

5 matches found

CVE•added 2023/11/07 5:15 p.m.•80 views

CVE-2022-45370

Improper Neutralization of Formula Elements in a CSV File vulnerability in WebToffee WordPress Comments Import & Export.This issue affects WordPress Comments Import & Export: from n/a through 2.3.1.

9.8CVSS9.6AI score0.00692EPSS

CVE•added 2018/06/19 7:29 p.m.•56 views

CVE-2018-11526

The plugin "WordPress Comments Import & Export" for WordPress (v2.0.4 and before) is vulnerable to CSV Injection.

7.8CVSS7.5AI score0.0213EPSS

CVE•added 2025/06/02 11:15 p.m.•50 views

CVE-2025-3919

The WordPress Comments Import & Export plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the save_settings function in all versions up to, and including, 2.4.3. Additionally, the plugin fails to properly sanitize and escape FTP settings par...

6.4CVSS6.2AI score0.00039EPSS

CVE•added 2024/04/12 1:15 p.m.•45 views

CVE-2024-31235

Cross-Site Request Forgery (CSRF) vulnerability in WebToffee WordPress Comments Import & Export.This issue affects WordPress Comments Import & Export: from n/a through 2.3.5.

4.3CVSS9.2AI score0.00073EPSS

CVE•added 2024/10/11 1:15 p.m.•32 views

CVE-2024-7514

The WordPress Comments Import & Export plugin for WordPress is vulnerable to to arbitrary file read due to insufficient file path validation during the comments import process, in versions up to, and including, 2.3.7. This makes it possible for authenticated attackers, with Author-level access and ...

6.5CVSS6.5AI score0.44069EPSS