High severity7.2NVD Advisory· Published Dec 18, 2023· Updated Jun 17, 2026
CVE-2023-4724
CVE-2023-4724
Description
The Export any WordPress data to XML/CSV WordPress plugin before 1.4.0, WP All Export Pro WordPress plugin before 1.8.6 does not validate and sanitise the wp_query parameter which allows an attacker to run arbitrary command on the remote server
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- WordPress/Export any WordPress data to XML/CSV WordPress plugindescription
- Range: <1.4.0
- Range: <1.8.6
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/48820f1d-45cb-4f1f-990d-d132bfc5536fnvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.