Medium severity4.8NVD Advisory· Published May 2, 2022· Updated Jun 17, 2026
CVE-2022-1255
CVE-2022-1255
Description
The Import and export users and customers WordPress plugin before 1.19.2.1 does not sanitise and escaped imported CSV data, which could allow high privilege users to import malicious javascript code and lead to Stored Cross-Site Scripting issues
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- WordPress/Import and export users and customers WordPress plugindescription
- Range: <1.19.2.1
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/22fe68c4-8f47-491e-be87-5e8e40535a82nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.