Page 2 of 6 results (0.005 seconds)
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0CVE-2018-20101 – Import users from CSV with meta <= 1.12 - Import Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2018-20101
The codection "Import users from CSV with meta" plugin before 1.12.1 for WordPress allows XSS via the value of a cell. El plugin "Import users from CSV with meta" de codection en versiones anteriores a la 1.12.1 para WordPress permite Cross-Site Scripting (XSS) mediante el valor de una celda. • https://wordpress.org/plugins/import-users-from-csv-with-meta/#developers https://wpvulndb.com/vulnerabilities/9176 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •