ThreatPress

WordPress Vulnerabilities Database

Back

WordPress Ultimate CSV Importer Plugin <= 3.6.74 Information Disclosure

Product
WP Ultimate CSV Importer
Description
Because of this vulnerability, remote attackers can disclose usernames, hashed passwords and email addresses for all users.
Solution
Update the plugin.
Classification
Type Information Disclosure
References
Research-G0blin
CVE
Name CVE-N/A
Versions
Affected In <= 3.6.74
Fixed In 3.6.75
Disclosure date
2015-02-22
Credits
James Hooker