WordPress Plugin Vulnerabilities

Business Directory Plugin < 6.4.4 - Authenticated (Author+) CSV Injection

Description

The Business Directory Plugin plugin for WordPress is vulnerable to CSV Injection in versions up to, and including, 6.4.3 via the class-csv-exporter.php file. This allows authenticated attackers, with author-level permissions and above, to embed untrusted input into CSV files exported by administrators, which can result in code execution when these files are downloaded and opened on a local system with a vulnerable configuration.

Affects Plugins

Plugin icon
business-directory-plugin
Fixed in 6.4.4

References

CVE
CVE-2023-5527
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/ed037e94-68b4-4efc-9d1a-fffc4aff1c45
URL
https://research.cleantalk.org/cve-2023-5527/

Classification

Type
CSV INJECTION
OWASP top 10
A1: Injection
CWE
CWE-1236
CVSS
7.4 (high)

Miscellaneous

Original Researcher
Dmitrii Ignatyev
Verified
No
WPVDB ID
e0e5e4d1-fc10-4d54-844f-ba7c8d590f1c

Timeline

Publicly Published
2024-06-17 (about 1 year ago)
Added
2024-06-17 (about 1 year ago)
Last Updated
2024-07-02 (about 1 year ago)

Other

Published
Title
Published
2020-12-18
Title
Ultimate SMS Notifications for WooCommerce < 1.4.2 - CSV Injection
Published
2022-10-21
Title
Contact Form Entries < 1.3.0 - CSV Injection
Published
2023-01-27
Title
Site Reviews < 6.4.0 - Unauthenticated CSV Injection
Published
2022-11-29
Title
Appointment Hour Booking < 1.3.73 - CSV Injection
Published
2020-11-20
Title
Import and export users and customers < 1.16.3.6 - CSV Injection