Filtered by vendor Addonspress
Subscriptions
Filtered by product Advanced Import
Subscriptions
Total
1 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2022-3677 | 1 Addonspress | 1 Advanced Import | 2024-11-21 | 6.5 Medium |
| The Advanced Import WordPress plugin before 1.3.8 does not have CSRF check when installing and activating plugins, which could allow attackers to make a logged in admin install arbitrary plugins from WordPress.org, and activate arbitrary ones from the blog via CSRF attacks | ||||
Page 1 of 1.