CVE-2020-9466

CVE-2020-9466

EPSS 1.3%

The Export Users to CSV plugin through 1.4.2 for WordPress allows CSV Injection.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://wpvulndb.com/vulnerabilities/10094 https://www.getastra.com/blog/911/plugin-exploit/csv-injection-in-export-users-to-csv-wordpress-plugin/https://www.jinsonvarghese.com/csv-injection-in-export-users-to-csv-plugin/