The Export Users to CSV plugin through 1.4.2 for WordPress allows CSV Injection.
References
Link | Resource |
---|---|
https://wpvulndb.com/vulnerabilities/10094 | Third Party Advisory |
https://www.getastra.com/blog/911/plugin-exploit/csv-injection-in-export-users-to-csv-wordpress-plugin/ | Third Party Advisory |
https://www.jinsonvarghese.com/csv-injection-in-export-users-to-csv-plugin/ | Third Party Advisory |
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2020-02-28 20:15
Updated : 2024-02-28 17:28
NVD link : CVE-2020-9466
Mitre link : CVE-2020-9466
CVE.ORG link : CVE-2020-9466
JSON object : View
Products Affected
export_users_to_csv_project
- export_users_to_csv
CWE
CWE-1236
Improper Neutralization of Formula Elements in a CSV File