Description

WordPress Plugin Import all XML, CSV & TXT into WordPress is prone to an unspecified vulnerability. No available information exists regarding this issue and it's impact on a vulnerable website. WordPress Plugin Import all XML, CSV & TXT into WordPress version 3.7.2 is vulnerable; prior versions may also be affected.

Remediation

Update to plugin version 3.7.3 or latest

References

https://wordpress.org/plugins/wp-ultimate-csv-importer/changelog/

Related Vulnerabilities

OpenSSL Use of a Broken or Risky Cryptographic Algorithm Vulnerability (CVE-2022-1434)

Liferay DXP Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-42116)

MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-8628)

WordPress Configuration Vulnerability (CVE-2009-2335)

MediaWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-12466)

Severity

High

Tags

Missing Update