Vulnerabilities > CSV Import Export Project > Medium

DATE CVE VULNERABILITY TITLE RISK
2017-12-19 CVE-2017-17753 Cross-site Scripting vulnerability in Csv-Import-Export Project Csv-Import-Export 1.0.0
Multiple cross-site scripting (XSS) vulnerabilities in the esb-csv-import-export plugin through 1.1 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) cie_type, (2) cie_import, (3) cie_update, or (4) cie_ignore parameter to includes/admin/views/esb-cie-import-export-page.php.
4.3