| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-32835 | WordPress Export and Import Users and Customers plugin <= 2.5.3 - Deserialization of untrusted data vulnerability | WebToffee | Import Export WordPress Users | Medium | 5.4 | 2024-04-24 07:26:03 | Deep Dive |
| CVE-2024-32588 | WordPress LearnPress Export Import plugin <= 4.0.3 - Reflected Cross Site Scripting (XSS) vulnerability | ThimPress | LearnPress Export Import | High | 7.1 | 2024-04-18 08:48:01 | Deep Dive |
| CVE-2024-31235 | WordPress Comments Import & Export plugin <= 2.3.5 - Cross Site Request Forgery (CSRF) vulnerability | WebToffee | WordPress Comments Import & Export | Medium | 4.3 | 2024-04-12 13:01:54 | Deep Dive |
| CVE-2024-31241 | WordPress LearnPress Export Import plugin <= 4.0.3 - Auth. SQL Injection vulnerability | ThimPress | LearnPress Export Import | High | 7.6 | 2024-04-07 18:00:12 | Deep Dive |
| CVE-2024-31308 | WordPress WP Import Export Lite & WP Import Export plugin <= 3.9.26 - PHP Object Injection vulnerability | VJInfotech | WP Import Export Lite | Medium | 4.4 | 2024-04-07 17:20:43 | Deep Dive |
| CVE-2024-30492 | WordPress Export and Import Users and Customers plugin <= 2.5.2 - Path Traversal vulnerability | WebToffee | Import Export WordPress Users | Medium | 4.3 | 2024-03-29 15:35:25 | Deep Dive |
| CVE-2024-30231 | WordPress Product Import Export for WooCommerce plugin <= 2.4.1 - Arbitrary File Upload vulnerability | WebToffee | Product Import Export for WooCommerce | Critical | 9.1 | 2024-03-26 11:58:00 | Deep Dive |
| CVE-2024-22135 | WordPress Order Export & Order Import for WooCommerce Plugin <= 2.4.3 is vulnerable to Arbitrary File Upload | WebToffee | Order Export & Order Import for WooCommerce | High | 8.0 | 2024-01-24 11:51:38 | Deep Dive |
| CVE-2024-22152 | WordPress Product Import Export for WooCommerce Plugin <= 2.3.7 is vulnerable to Arbitrary File Upload | WebToffee | Product Import Export for WooCommerce | High | 8.0 | 2024-01-24 11:48:56 | Deep Dive |
| CVE-2023-6583 | Import and export users and customers <= 1.24.2 - Authenticated(Administrator+) Directory Traversal via Recurring Import Functionality | carazo | Import and export users and customers | Medium | 6.6 | 2024-01-11 08:32:50 | Deep Dive |
| CVE-2023-6558 | Export and Import Users and Customers <= 2.4.8 - Authenticated (Shop Manager+) Arbitrary File Upload | webtoffee | Export and Import Users and Customers | High | 7.2 | 2024-01-11 08:32:35 | Deep Dive |
| CVE-2023-6624 | Import and export users and customers <= 1.24.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via shortcode | carazo | Import and export users and customers | Medium | 4.9 | 2024-01-11 08:32:33 | Deep Dive |
| CVE-2023-34385 | WordPress Export Import Menus Plugin <= 1.8.0 is vulnerable to Arbitrary File Upload | Akshay Menariya | Export Import Menus | Critical | 9.9 | 2023-12-20 18:44:49 | Deep Dive |
| CVE-2022-45370 | WordPress WordPress Comments Import & Export Plugin <= 2.3.1 is vulnerable to CSV Injection | WebToffee | WordPress Comments Import & Export | 超危 | - | 2023-11-07 16:56:10 | Deep Dive |
| CVE-2022-46802 | WordPress Product Reviews Import Export for WooCommerce Plugin <= 1.4.8 is vulnerable to CSV Injection | WebToffee | Product Reviews Import Export for WooCommerce | 超危 | - | 2023-11-07 16:07:32 | Deep Dive |
| CVE-2023-3459 | Export and Import Users and Customers <= 2.4.1 - Missing Authorization to Authenticated (Shop Manager) Arbitrary User Password Change | webtoffee | Export and Import Users and Customers | High | 7.2 | 2023-07-18 02:39:25 | Deep Dive |
| CVE-2020-36737 | Import / Export Customizer Settings <= 1.0.3 - Cross-Site Request Forgery Bypass | brainstormforce | Import / Export Customizer Settings | Medium | 4.3 | 2023-07-01 03:30:12 | Deep Dive |
| CVE-2023-30487 | WordPress LearnPress Export Import Plugin <= 4.0.2 is vulnerable to Cross Site Scripting (XSS) | ThimPress | LearnPress Export Import | High | 7.1 | 2023-05-18 08:37:57 | Deep Dive |
| CVE-2023-1347 | Customizer Export/Import < 0.9.6 - Admin+ PHP Object Injection | Unknown | Customizer Export/Import | 高危 | - | 2023-05-08 13:58:19 | Deep Dive |
| CVE-2022-3558 | Import and export users and customers < 1.20.5 - Subscriber+ CSV Injection | Unknown | Import and export users and customers | 高危 | - | 2022-11-07 00:00:00 | Deep Dive |