The Post to CSV by BestWebSoft plugin for WordPress is a vulnerable program. It is vulnerable in versions up to and including 1.4.0. This means that anyone who can access it can embed unwanted input into the exported CSV files. If these files are downloaded and opened on a local system with a vulnerable configuration, this can lead to the execution of code.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
