Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
WordPress Plugin Import all XML CSV TXT into WordPress Multiple Vulnerabilities - CVE-2022-3243 - Vulnerability Database
WP Plugin Wp Ultimate Csv Importer

WordPress Plugin Import all XML CSV TXT into WordPress Multiple Vulnerabilities - CVE-2022-3243

High
Reference: CVE-2022-3243
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2022-3243
Title: WordPress Plugin Import all XML CSV TXT into WordPress Multiple Vulnerabilities
Overview:

WordPress Plugin Import all XML CSV TXT into WordPress is prone to multiple vulnerabilities including SQL injection and security bypass vulnerabilities. Exploiting these issues may allow an attacker to compromise the application access or modify data or exploit latent vulnerabilities in the underlying database or to perform otherwise restricted actions and subsequently access some of the plugins features. WordPress Plugin Import all XML CSV TXT into WordPress version 6.5.7 is vulnerable prior versions may also be affected.