We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2022-47442

WordPress UsersWP Plugin <= 1.2.3.9 is vulnerable to CSV Injection



AssignerPatchstack
Reserved2022-12-15
Published2023-11-07
Updated2024-09-04

Description

Improper Neutralization of Formula Elements in a CSV File vulnerability in AyeCode Ltd UsersWP.This issue affects UsersWP: from n/a through 1.2.3.9.

Problem types

CWE-1236 Improper Neutralization of Formula Elements in a CSV File

Product status

Default status
0x400698f170

Any version
affected

Credits

Justiice (Patchstack Alliance) 0x400698f1d0

References

https://patchstack.com/database/vulnerability/userswp/wordpress-userswp-front-end-login-form-user-registration-user-profile-members-directory-plugin-for-wordpress-plugin-1-2-3-9-csv-injection?_s_id=cve vdb-entry

cve.org CVE-2022-47442

nvd.nist.gov CVE-2022-47442

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2022-47442
Subscribe to our newsletter to learn more about our work.