VYPR

HTML filter and csv-file search

by WordPress

CVEs (1)

  • CVE-2023-5099HigOct 31, 2023
    risk 0.50cvss 8.8epss 0.01

    The HTML filter and csv-file search plugin for WordPress is vulnerable to Local File Inclusion in versions up to, and including, 2.7 via the 'src' attribute of the 'csvsearch' shortcode. This allows authenticated attackers, with contributor-level permissions and above, to…