WordPress Plugin Vulnerabilities

Export Users Data CSV < 2.2 - Improper Neutralization of Formula Elements in a CSV File

Description

Improper Neutralization of Formula Elements in a CSV File vulnerability in Kaushik Kalathiya Export Users Data CSV.This issue affects Export Users Data CSV: from n/a through 2.1.

Affects Plugins

Plugin icon
export-users-data-csv
Fixed in 2.2

References

CVE
CVE-2022-41616

Classification

Type
CSV INJECTION
OWASP top 10
A1: Injection
CWE
CWE-1236

Miscellaneous

Original Researcher
Mika
Verified
No
WPVDB ID
e22a6eb3-4042-4a14-a9bf-c18f50784aea

Timeline

Publicly Published
2023-11-07 (about 2 years ago)
Added
2023-11-07 (about 2 years ago)
Last Updated
2023-11-07 (about 2 years ago)

Other

Published
Title
Published
2023-02-06
Title
Email Subscribers & Newsletters < 5.5.3 - Improper Neutralization of Formula Elements in a CSV File
Published
2021-06-21
Title
Sign-up Sheets < 1.0.14 - Authenticated CSV Injection
Published
2022-09-25
Title
Activity Log < 2.8.4 - CSV Injection
Published
2022-10-17
Title
Import and export users and customers < 1.20.5 - Subscriber+ CSV Injection
Published
2021-01-25
Title
Contact Form 7 Database Addon < 1.2.5.6 - CSV Injection