Vulnerabilities > Apasionados > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-09-23 | CVE-2022-38061 | Improper Neutralization of Formula Elements in a CSV File vulnerability in Apasionados Export Post Info Authenticated (author+) CSV Injection vulnerability in Export Post Info plugin <= 1.2.0 at WordPress. | 5.7 |
| 2022-09-09 | CVE-2022-38068 | Unspecified vulnerability in Apasionados Export Post Info Authenticated (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Apasionados Export Post Info plugin <= 1.1.0 at WordPress. | 4.8 |
| 2022-03-10 | CVE-2021-33851 | Cross-site Scripting vulnerability in Apasionados Customize Login Image 3.4 A cross-site scripting (XSS) attack can cause arbitrary code (JavaScript) to run in a user's browser and can use an application as the vehicle for the attack. | 5.4 |