Xylusthemes ≫ Wp Smart Import

3 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.

8.1

CVE-2025-47453

EPSS 0.22%
Published 23.05.2025 12:43:36
Last modified 23.05.2025 15:54:42

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Xylus Themes WP Smart Import allows PHP Local File Inclusion. This issue affects WP Smart Import: from n/a through 1.1.3.

6.1

CVE-2022-40209

EPSS 0.15%
Published 06.12.2022 15:15:15
Last modified 21.11.2024 07:21:04

Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Xylus Themes WP Smart Import plugin <= 1.0.2 on WordPress.

9.1

CVE-2020-24147

EPSS 1.01%
Published 07.07.2021 14:15:09
Last modified 21.11.2024 05:14:26

Server-side request forgery (SSR) vulnerability in the WP Smart Import (wp-smart-import) plugin 1.0.0 for WordPress via the file field.