Description
WordPress Plugin Import all XML, CSV & TXT into WordPress is prone to an unspecified vulnerability. No available information exists regarding this issue and it's impact on a vulnerable website. WordPress Plugin Import all XML, CSV & TXT into WordPress version 3.7.2 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 3.7.3 or latest
References
Related Vulnerabilities
WordPress Plugin Caret Country Access Limit Cross-Site Scripting (1.0.1)
WordPress Plugin GiveWP-Donation and Fundraising Platform Cross-Site Scripting (2.3.0)
WordPress Plugin Generate PDF using Contact Form 7 Cross-Site Scripting (3.5)
Magento Observable Differences in Behavior to Error Inputs Vulnerability (CVE-2020-9588)