Import users from CSV with meta <= 1.14.0.2 - XSS and CSRF

Affects Plugin

fixed in version 1.14.0.3

References

CVE 2019-15329
CVE 2019-15328
URL https://plugins.trac.wordpress.org/changeset?reponame=&new=2050450%40import-users-from-csv-with-meta&old=2050003%40import-users-from-csv-with-meta

Classification

Type MULTI

Miscellaneous

Original Researcher ApplicationSecurity
Views 1956
Verified No
WPVDB ID 9366

Timeline

Publicly Published 2019-03-14 (over 1 year ago)
Added 2019-06-20 (about 1 year ago)
Last Updated 2019-11-28 (8 months ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin