WordPress Export Users to CSV plugin <= 1.1.1 - CSV Injection vulnerability
- Export Users to CSV
- CSV Injection vulnerability found by Javier Olmedo in WordPress Export Users to CSV plugin (versions <= 1.1.1).
- 2018.09.01 - we were unable to find a patched version of this plugin.
OWASP Top 10 A1: Injection
- Name CVE-2018-15571
- Disclosure date
- Javier Olmedo