ThreatPress

WordPress Vulnerabilities Database

Back

WordPress Import Users From CSV with Meta plugin 1.15 - Unauthorised Authenticated Users Export vulnerability

Product
Import users from CSV with meta
Description
Unauthorised Authenticated Users Export vulnerability found in WordPress Import Users From CSV with Meta plugin (version 1.15).
Solution
Update WordPress Import Users From CSV with Meta plugin to the latest available version (at least 1.15.0.1).
Classification
Type Unknown
OWASP Top 10 A2: Broken Authentication and Session Management
References
Plugin changelog
CVE
Name CVE-N/A
Versions
Affected In 1.15
Fixed In 1.15.0.1
Disclosure date
2020-01-06
Submitter
ThreatPress