Lucene search
Sanjay DasPATCHSTACK:11CEC3C99CD9065BB20A87BB926498E1HistorySep 20, 2022 - 12:00 a.m.
WordPress Import all XML, CSV & TXT plugin <= 6.5.7 - Authenticated SQL Injection (SQLi) vulnerability
2022-09-2000:00:00
Sanjay Das
patchstack.com
8
wordpress
plugin
sql injection
vulnerability
6.5.7
EPSS
0.001
Percentile
32.2%
Authenticated SQL Injection (SQLi) vulnerability discovered by Sanjay Das in WordPress Import all XML, CSV & TXT plugin (versions <= 6.5.7).
Solution
Update the WordPress WP Ultimate CSV Importer plugin to the latest available version (at least 6.5.8).
Related
prion
prion
Sql injection
2022-10-17 12:15:00
wpvulndb
wpvulndb
Import all XML, CSV & TXT into WordPress < 6.5.8 - Admin+ SQLi
2022-09-20 00:00:00
nvd
nvd
CVE-2022-3243
2022-10-17 12:15:10
cve
cve
CVE-2022-3243
2022-10-17 12:15:10
cvelist
cvelist
CVE-2022-3243 Import all XML, CSV & TXT into WordPress < 6.5.8 - Admin+ SQLi
2022-10-17 00:00:00
wpexploit
wpexploit
Import all XML, CSV & TXT into WordPress < 6.5.8 - Admin+ SQLi
2022-09-20 00:00:00