Vulnerabilities > CVE-2024-32431 - Unspecified vulnerability in Wpallimport WP ALL Import

CVSS 7.2 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

HIGH

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

wpallimport

NVD

Published: 2024-04-15

Updated: 2025-04-02

Summary

Deserialization of Untrusted Data vulnerability in WP All Import Import Users from CSV.This issue affects Import Users from CSV: from n/a through 1.2.

Vulnerable Configurations

Part	Description	Count
Application	Wpallimport Wpallimport WP ALL Import *	1

References

https://patchstack.com/database/vulnerability/import-users-from-csv/wordpress-import-users-from-csv-plugin-1-2-php-object-injection?_s_id=cve
https://patchstack.com/database/vulnerability/import-users-from-csv/wordpress-import-users-from-csv-plugin-1-2-php-object-injection?_s_id=cve