Vulnerabilities > WP CSV Exporter Project
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2022-12-12 | CVE-2022-3605 | Unspecified vulnerability in WP CSV Exporter Project WP CSV Exporter The WP CSV Exporter WordPress plugin before 1.3.7 does not properly escape the fields when exporting data as CSV, leading to a CSV injection vulnerability. | 7.8 |
2022-12-05 | CVE-2022-3249 | Unspecified vulnerability in WP CSV Exporter Project WP CSV Exporter The WP CSV Exporter WordPress plugin before 1.3.7 does not properly sanitise and escape some parameters before using them in a SQL statement, allowing high privilege users such as admin to perform SQL injection attacks | 7.2 |