Description

WordPress Plugin CSV Importer is prone to multiple unspecified vulnerabilities. No available information exists regarding these issues and their impact on a vulnerable website. WordPress Plugin CSV Importer version 0.3.7 is vulnerable; prior versions may also be affected.

Remediation

Update to plugin version 0.3.8 or latest

References

https://wordpress.org/plugins/csv-importer/changelog/

Related Vulnerabilities

WordPress Plugin WordPress Download Manager Cross-Site Request Forgery (3.2.12)

WordPress Plugin Video Lessons Manager-Best Video Course LMS Cross-Site Scripting (1.7.1)

WordPress Plugin Slider by Soliloquy-Responsive Image Slider for WordPress Cross-Site Scripting (2.6.2)

XWiki Cleartext Storage of Sensitive Information Vulnerability (CVE-2023-50719)

WordPress Plugin Article Directory Redux Cross-Site Scripting (1.0.2)

Severity

High

Tags

Missing Update