Authenticated (author+) CSV Injection vulnerability in Export Post Info plugin <= 1.2.0 at WordPress.
References
Link | Resource |
---|---|
https://patchstack.com/database/vulnerability/export-post-info/wordpress-export-post-info-plugin-1-2-0-authenticated-csv-injection-vulnerability/_s_id=cve | Broken Link Third Party Advisory |
https://wordpress.org/plugins/export-post-info/#developers | Product Vendor Advisory |
https://patchstack.com/database/vulnerability/export-post-info/wordpress-export-post-info-plugin-1-2-0-authenticated-csv-injection-vulnerability/_s_id=cve | Broken Link Third Party Advisory |
https://wordpress.org/plugins/export-post-info/#developers | Product Vendor Advisory |
Configurations
History
21 Nov 2024, 07:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-09-23 15:15
Updated : 2024-11-21 07:15
NVD link : CVE-2022-38061
Mitre link : CVE-2022-38061
CVE.ORG link : CVE-2022-38061
JSON object : View
Products Affected
apasionados
- export_post_info
CWE
CWE-1236
Improper Neutralization of Formula Elements in a CSV File