cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2022-3605,https://securityvulnerability.io/vulnerability/CVE-2022-3605,WP CSV Exporter < 1.3.7 - CSV Injection,"The WP CSV Exporter WordPress plugin before 1.3.7 does not properly escape the fields when exporting data as CSV, leading to a CSV injection vulnerability.",Wordpress,WP Csv Exporter,7.8,HIGH,0.0006200000061653554,false,,false,false,false,,false,false,2022-12-12T17:54:46.747Z,0
CVE-2022-3249,https://securityvulnerability.io/vulnerability/CVE-2022-3249,WP CSV Exporter < 1.3.7 - Admin+ SQLi,"The WP CSV Exporter WordPress plugin before 1.3.7 does not properly sanitise and escape some parameters before using them in a SQL statement, allowing high privilege users such as admin to perform SQL injection attacks",Wordpress,WP Csv Exporter,7.2,HIGH,0.0011399999493733048,false,,false,false,false,,false,false,2022-12-05T16:50:36.452Z,0
CVE-2022-1273,https://securityvulnerability.io/vulnerability/CVE-2022-1273,Import WP < 2.4.6 - Admin+ Arbitrary File Upload to RCE,"The Import WP WordPress plugin before 2.4.6 does not validate the imported file in some cases, allowing high privilege users such as admin to upload arbitrary files (such as PHP), leading to RCE",Wordpress,Import WP – Import And Export WordPress Data To Xml Or Csv Files,7.2,HIGH,0.0011399999493733048,false,,false,false,false,,false,false,2022-05-02T16:05:55.000Z,0