Lucene search

K
wpvulndbWpvulndbWPVDB-ID:401D57E4-85D3-4587-ACE2-569A5D0338C8
HistoryNov 20, 2020 - 12:00 a.m.

Import and export users and customers < 1.16.3.6 - CSV Injection

2020-11-2000:00:00
wpscan.com
6

EPSS

0.009

Percentile

83.0%

The plugin did not validate or sanitise user data, such as first and last names from the profile, leading to a CSV injection when the data is exported by an administrator.

EPSS

0.009

Percentile

83.0%

Related for WPVDB-ID:401D57E4-85D3-4587-ACE2-569A5D0338C8