Wp Csv Exporter@* Security Vulnerabilities and Issues — Wp Csv Exporter@* CVE List

Lucene search

Wp Csv Exporter ProjectWp Csv Exporter*

3 matches found

CVE•added 2022/12/12 6:15 p.m.•48 views

CVE-2022-3605

The WP CSV Exporter WordPress plugin before 1.3.7 does not properly escape the fields when exporting data as CSV, leading to a CSV injection vulnerability.

7.8CVSS7.7AI score0.00086EPSS

CVE•added 2023/01/09 11:15 p.m.•41 views

CVE-2022-4368

The WP CSV WordPress plugin through 1.8.0.0 does not sanitize and escape a parameter before outputting it back in the page when importing a CSV, and doe snot have CSRF checks in place as well, leading to a Reflected Cross-Site Scripting.

6.1CVSS6.2AI score0.00157EPSS

CVE•added 2022/12/05 5:15 p.m.•38 views

CVE-2022-3249

The WP CSV Exporter WordPress plugin before 1.3.7 does not properly sanitise and escape some parameters before using them in a SQL statement, allowing high privilege users such as admin to perform SQL injection attacks

7.2CVSS7.1AI score0.01618EPSS