VYPR

Exports and Reports

by WordPress

CVEs (1)

  • CVE-2022-1539HigJul 25, 2022
    risk 0.57cvss 8.8epss 0.01

    The Exports and Reports WordPress plugin before 0.9.2 does not sanitize and validate data when generating the CSV to export, which could lead to a CSV injection, by the use of Microsoft Excel DDE function, or to leak data via maliciously injected hyperlinks.