VYPR

WP Import Export

by WordPress

CVEs (1)

  • CVE-2022-0236HigJan 18, 2022
    risk 0.49cvss 7.5epss 0.04

    The WP Import Export WordPress plugin (both free and premium versions) is vulnerable to unauthenticated sensitive data disclosure due to a missing capability check on the download function wpie_process_file_download found in the ~/includes/classes/class-wpie-general.php file.…