Описание
The WP CSV Exporter WordPress plugin before 1.3.7 does not properly escape the fields when exporting data as CSV, leading to a CSV injection vulnerability.
Ссылки
- Third Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.3.7 (исключая)
cpe:2.3:a:wp_csv_exporter_project:wp_csv_exporter:*:*:*:*:*:wordpress:*:*
EPSS
Процентиль: 56%
0.00343
Низкий
7.8 High
CVSS3
Дефекты
Связанные уязвимости
CVSS3: 7.8
github
около 3 лет назад
The WP CSV Exporter WordPress plugin before 1.3.7 does not properly escape the fields when exporting data as CSV, leading to a CSV injection vulnerability.
EPSS
Процентиль: 56%
0.00343
Низкий
7.8 High
CVSS3