Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wp all import vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2018-20967
The wp-ultimate-csv-importer plugin prior to 5.6.1 for WordPress has CSRF.
Smackcoders Import All Pages\\, Post Types\\, Products\\, Orders\\, And Users As Xml \\& Csv
3.5
CVSSv2
CVE-2022-0360
The Easy Drag And drop All Import : WP Ultimate CSV Importer WordPress plugin prior to 6.4.3 does not sanitise and escaped imported comments, which could allow high privilege users to import malicious ones (either intentionnaly or not) and lead to Stored Cross-Site Scripting issu...
Smackcoders Import All Pages\\, Post Types\\, Products\\, Orders\\, And Users As Xml \\& Csv
NA
CVE-2015-10125
A vulnerability classified as problematic has been found in WP Ultimate CSV Importer Plugin 3.7.2 on WordPress. This affects an unknown part. The manipulation leads to cross-site request forgery. It is possible to initiate the attack remotely. Upgrading to version 3.7.3 is able t...
Smackcoders Import All Pages\\, Post Types\\, Products\\, Orders\\, And Users As Xml \\& Csv
NA
CVE-2023-6583
The Import and export users and customers plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 1.24.2 via the Recurring Import functionality. This makes it possible for authenticated attackers, with administrator access and above, to rea...
Codection Import And Export Users And Customers
NA
CVE-2024-32431
Deserialization of Untrusted Data vulnerability in WP All Import Import Users from CSV.This issue affects Import Users from CSV: from n/a up to and including 1.2.
NA
CVE-2024-1042
The WP Radio – Worldwide Online Radio Stations Directory for WordPress plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on multiple AJAX functions in all versions up to, and including, 3.1.9. This makes it possible fo...
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48700
CVE-2022-48689
CVE-2024-27956
CVE-2023-6363
SQL
NULL pointer dereference
CVE-2023-41830
CVE-2015-2051
arbitrary
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3