Skip to main content

Import Users From Csv With Meta

6 CVEs product

Monthly

CVE-2019-15329 HIGH This Week

The import-users-from-csv-with-meta plugin before 1.14.0.3 for WordPress has CSRF. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

WordPress CSRF Import Users From Csv With Meta
NVD
CVSS 3.0
8.8
EPSS
0.7%
CVE-2019-15328 MEDIUM This Month

The import-users-from-csv-with-meta plugin before 1.14.0.3 for WordPress has XSS. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS WordPress Import Users From Csv With Meta
NVD
CVSS 3.0
6.1
EPSS
0.9%
CVE-2019-15327 MEDIUM This Month

The import-users-from-csv-with-meta plugin before 1.14.1.3 for WordPress has XSS via imported data. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS WordPress Import Users From Csv With Meta
NVD
CVSS 3.0
6.1
EPSS
0.9%
CVE-2019-15326 HIGH This Week

The import-users-from-csv-with-meta plugin before 1.14.2.1 for WordPress has directory traversal. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Path Traversal WordPress Import Users From Csv With Meta
NVD
CVSS 3.0
7.5
EPSS
2.3%
CVE-2019-14683 MEDIUM POC This Month

The codection "Import users from CSV with meta" plugin before 1.14.2.2 for WordPress allows wp-admin/admin-ajax.php?action=acui_delete_attachment CSRF. Rated medium severity (CVSS 5.7), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP WordPress CSRF Import Users From Csv With Meta
NVD
CVSS 3.1
5.7
EPSS
0.7%
CVE-2018-20101 MEDIUM This Month

The codection "Import users from CSV with meta" plugin before 1.12.1 for WordPress allows XSS via the value of a cell. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

WordPress XSS Import Users From Csv With Meta
NVD
CVSS 3.0
6.1
EPSS
0.8%
EPSS 1% CVSS 8.8
HIGH This Week

The import-users-from-csv-with-meta plugin before 1.14.0.3 for WordPress has CSRF. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

WordPress CSRF Import Users From Csv With Meta
NVD
EPSS 1% CVSS 6.1
MEDIUM This Month

The import-users-from-csv-with-meta plugin before 1.14.0.3 for WordPress has XSS. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS WordPress Import Users From Csv With Meta
NVD
EPSS 1% CVSS 6.1
MEDIUM This Month

The import-users-from-csv-with-meta plugin before 1.14.1.3 for WordPress has XSS via imported data. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS WordPress Import Users From Csv With Meta
NVD
EPSS 2% CVSS 7.5
HIGH This Week

The import-users-from-csv-with-meta plugin before 1.14.2.1 for WordPress has directory traversal. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Path Traversal WordPress Import Users From Csv With Meta
NVD
EPSS 1% CVSS 5.7
MEDIUM POC This Month

The codection "Import users from CSV with meta" plugin before 1.14.2.2 for WordPress allows wp-admin/admin-ajax.php?action=acui_delete_attachment CSRF. Rated medium severity (CVSS 5.7), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP WordPress CSRF +1
NVD
EPSS 1% CVSS 6.1
MEDIUM This Month

The codection "Import users from CSV with meta" plugin before 1.12.1 for WordPress allows XSS via the value of a cell. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

WordPress XSS Import Users From Csv With Meta
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy