CSV Import Vulnerability in Users-Customers-Import-Export-for-WP-WooCommerce Plugin

CSV Import Vulnerability in Users-Customers-Import-Export-for-WP-WooCommerce Plugin

CVE-2020-12074 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

The users-customers-import-export-for-wp-woocommerce plugin before 1.3.9 for WordPress allows subscribers to import administrative accounts via CSV.

Learn more about our Wordpress Pen Testing.