CVE-2020-22277

Import and export users and customers WordPress Plugin through 1.15.5.11 allows CSV injection via a customer's profile.
Configurations

Configuration 1 (hide)

cpe:2.3:a:codection:import_and_export_users_and_customers:*:*:*:*:*:wordpress:*:*

History

07 Nov 2023, 03:19

Type Values Removed Values Added
References
  • {'url': 'https://wordpress.org/plugins/import-users-from-csv-with-meta/#:~:text=Install%20Import%20and%20export%20users%20and%20customers%20automatically,is%20uploaded%20and%20extracted%2C%20click%20Activate%20Plugin%20.', 'name': 'https://wordpress.org/plugins/import-users-from-csv-with-meta/#:~:text=Install%20Import%20and%20export%20users%20and%20customers%20automatically,is%20uploaded%20and%20extracted%2C%20click%20Activate%20Plugin%20.', 'tags': ['Product', 'Release Notes', 'Third Party Advisory'], 'refsource': 'MISC'}
  • () https://wordpress.org/plugins/import-users-from-csv-with-meta/#:~:text=Install%20Import%20and%20export%20users%20and%20customers%20automatically%2Cis%20uploaded%20and%20extracted%2C%20click%20Activate%20Plugin%20. -

Information

Published : 2020-11-04 17:15

Updated : 2024-02-28 18:08


NVD link : CVE-2020-22277

Mitre link : CVE-2020-22277

CVE.ORG link : CVE-2020-22277


JSON object : View

Products Affected

codection

  • import_and_export_users_and_customers
CWE
CWE-1236

Improper Neutralization of Formula Elements in a CSV File