Description

WordPress Plugin Import all XML, CSV & TXT into WordPress is prone to an unspecified vulnerability. No available information exists regarding this issue and it's impact on a vulnerable website. WordPress Plugin Import all XML, CSV & TXT into WordPress version 3.7.2 is vulnerable; prior versions may also be affected.

Remediation

Update to plugin version 3.7.3 or latest

References

https://wordpress.org/plugins/wp-ultimate-csv-importer/changelog/

Related Vulnerabilities

Oracle Database Server CVE-2014-6537 Vulnerability (CVE-2014-6537)

WordPress Plugin Social Connect Cross-Site Scripting (1.0.4)

Oracle Application Server Other Vulnerability (CVE-2006-5358)

WordPress Plugin Easy Banners Cross-Site Scripting (1.4)

WordPress Plugin NotificationX-Best FOMO, Social Proof, WooCommerce Sales Popup & Notification Bar With Elementor SQL Injection (2.3.11)

Severity

High

Tags

Missing Update