CVE-2018-16308

CVE-2018-16308

EPSS 1.8%

The Ninja Forms plugin before 3.3.14.1 for WordPress allows CSV injection.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://packetstormsecurity.com/files/148993/WordPress-Ninja-Forms-3.3.13-CSV-Injection.html https://wordpress.org/plugins/ninja-forms/#developers https://www.exploit-db.com/exploits/45234/