Vulnerabilities > CSV Import Export Project > CSV Import Export > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-12-19 | CVE-2017-17753 | Cross-site Scripting vulnerability in Csv-Import-Export Project Csv-Import-Export 1.0.0 Multiple cross-site scripting (XSS) vulnerabilities in the esb-csv-import-export plugin through 1.1 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) cie_type, (2) cie_import, (3) cie_update, or (4) cie_ignore parameter to includes/admin/views/esb-cie-import-export-page.php. | 4.3 |