Soflyy

Wp All Import

20 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2015-9330

  • EPSS 0.55%
  • Veröffentlicht 20.08.2019 15:15:11
  • Zuletzt bearbeitet 21.11.2024 02:40:21

The wp-all-import plugin before 3.2.5 for WordPress has blind SQL injection.

6.1

CVE-2015-9329

  • EPSS 0.19%
  • Veröffentlicht 20.08.2019 15:15:11
  • Zuletzt bearbeitet 21.11.2024 02:40:21

The wp-all-import plugin before 3.2.5 for WordPress has reflected XSS.

6.1

CVE-2018-16259

  • EPSS 0.24%
  • Veröffentlicht 12.04.2019 19:29:00
  • Zuletzt bearbeitet 21.11.2024 03:52:23

There is an XSS vulnerability in WP All Import plugin 3.4.9 for WordPress via pmxi-admin-settings large_feed_limit. NOTE: The vendor states that this is not a vulnerability. WP All Import is only able to be used by a logged in administrator, and the ...

6.1

CVE-2018-16258

  • EPSS 0.24%
  • Veröffentlicht 12.04.2019 19:29:00
  • Zuletzt bearbeitet 21.11.2024 03:52:23

There is an XSS vulnerability in WP All Import plugin 3.4.9 for WordPress via pmxi-admin-import custom_type. NOTE: The vendor states that this is not a vulnerability. WP All Import is only able to be used by a logged in administrator, and the action ...

6.1

CVE-2018-16257

  • EPSS 0.24%
  • Veröffentlicht 12.04.2019 19:29:00
  • Zuletzt bearbeitet 21.11.2024 03:52:23

There are multiple XSS vulnerabilities in WP All Import plugin 3.4.9 for WordPress via action=template. NOTE: The vendor states that this is not a vulnerability. WP All Import is only able to be used by a logged in administrator, and the action descr...

6.1

CVE-2018-16256

Exploit
  • EPSS 0.24%
  • Veröffentlicht 12.04.2019 18:29:00
  • Zuletzt bearbeitet 21.11.2024 03:52:23

There is an XSS vulnerability in WP All Import plugin 3.4.9 for WordPress via Add Filtering Options(Add Rule). NOTE: The vendor states that this is not a vulnerability. WP All Import is only able to be used by a logged in administrator, and the actio...

6.1

CVE-2018-16255

  • EPSS 0.33%
  • Veröffentlicht 12.04.2019 18:29:00
  • Zuletzt bearbeitet 21.11.2024 03:52:23

There is an XSS vulnerability in WP All Import plugin 3.4.9 for WordPress via action=evaluate. NOTE: The vendor states that this is not a vulnerability. WP All Import is only able to be used by a logged in administrator, and the action described can ...

6.1

CVE-2018-16254

  • EPSS 0.33%
  • Veröffentlicht 12.04.2019 18:29:00
  • Zuletzt bearbeitet 21.11.2024 03:52:23

There is an XSS vulnerability in WP All Import plugin 3.4.9 for WordPress via action=options. NOTE: The vendor states that this is not a vulnerability. WP All Import is only able to be used by a logged in administrator, and the action described can o...

6.1

CVE-2018-0546

  • EPSS 0.28%
  • Veröffentlicht 09.03.2018 16:29:00
  • Zuletzt bearbeitet 21.11.2024 03:38:27

Cross-site scripting vulnerability in WP All Import plugin prior to version 3.4.6 for WordPress allows an attacker to inject arbitrary web script or HTML via unspecified vectors.

6.1

CVE-2018-0547

  • EPSS 0.28%
  • Veröffentlicht 09.03.2018 16:29:00
  • Zuletzt bearbeitet 21.11.2024 03:38:27

Cross-site scripting vulnerability in WP All Import plugin prior to version 3.4.7 for WordPress allows an attacker to inject arbitrary web script or HTML via unspecified vectors.