The WP-CRM WordPress plugin up to and including 1.2.1 does not validate and sanitise fields when exporting people to a CSV file, leading to a CSV injection vulnerability.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
usabilitydynamics wp-crm |