Description

WordPress Plugin Woocommerce CSV importer is prone to an unspecified vulnerability. No available information exists regarding this issue and it's impact on a vulnerable website. WordPress Plugin Woocommerce CSV importer version 3.4.0 is vulnerable; prior versions may also be affected.

Remediation

Disable the plugin until a fix is available

References

https://wordpress.org/plugins/woocommerce-csvimport/#description

Related Vulnerabilities

WordPress Plugin Count per Day Cross-Site Request Forgery (3.2.5)

MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-2931)

Joomla! Core 3.3.x Cross-Site Scripting (3.3.0 - 3.3.3)

IBMHttpServer Observable Discrepancy Vulnerability (CVE-2023-32342)

WebERP Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2018-19436)

Severity

High

Tags

Missing Update