RSS   Vulnerabilities for 'Easy drag and drop all import'   RSS

2022-02-28
 
CVE-2022-0360

CWE-79
 

 
The Easy Drag And drop All Import : WP Ultimate CSV Importer WordPress plugin before 6.4.3 does not sanitise and escaped imported comments, which could allow high privilege users to import malicious ones (either intentionnaly or not) and lead to Stored Cross-Site Scripting issues

 

 >>> Vendor: Smackcoders 4 Products
Wp ultimate email marketer plugin
Echo sign
Ultimate exporter
Easy drag and drop all import


Copyright 2024, cxsecurity.com

 

Back to Top