ThreatPress

WordPress Vulnerabilities Database

Back

WordPress Export Users to CSV plugin <= 1.4.2 - CSV Injection vulnerability

Product
Export Users to CSV
Description
CSV Injection vulnerability found by Jinson Varghese Behanan in WordPress Export Users to CSV plugin (versions <= 1.4.2).
Solution
2020 Feb. 26 - no patched version available.
Classification
Type Unknown
OWASP Top 10 A1: Injection
References
Theme changelog
CVE
Name CVE-N/A
Versions
Affected In <= 1.4.2
Disclosure date
2020-02-26
Credits
Jinson Varghese Behanan
Submitter
ThreatPress