Description

WordPress Plugin Import all XML, CSV & TXT into WordPress is prone to an unspecified vulnerability. No available information exists regarding this issue and it's impact on a vulnerable website. WordPress Plugin Import all XML, CSV & TXT into WordPress version 3.7.2 is vulnerable; prior versions may also be affected.

Remediation

Update to plugin version 3.7.3 or latest

References

https://wordpress.org/plugins/wp-ultimate-csv-importer/changelog/

Related Vulnerabilities

WordPress Plugin Caret Country Access Limit Cross-Site Scripting (1.0.1)

WordPress Plugin GiveWP-Donation and Fundraising Platform Cross-Site Scripting (2.3.0)

WordPress Plugin Generate PDF using Contact Form 7 Cross-Site Scripting (3.5)

Magento Observable Differences in Behavior to Error Inputs Vulnerability (CVE-2020-9588)

Lighttpd Other Vulnerability (CVE-2006-0814)

Severity

High

Tags

Missing Update