Viewing 3 replies - 1 through 3 (of 3 total)
  • Plugin Author Shambix

    (@shambix)

    I am aware of the vulnerability, which wouldn’t affect the website where the plugin is, but the admin’s PC in certain particular situations, where if a hacker enters weird data in eg. category names, then when exported in a csv and opened manually, it could execute malicious code on the PC.

    It is flagged as medium risk (not critical), so I will fix it as soon as I can.

    Thread Starter blackeye0013

    (@blackeye0013)

    Hello Shambix, any news on this? Although I’m glad to know this won’t cause any troubles in WP, it would look better, if the vulnerability was taken care of.

    Same as the “Plugin hasn’t been tested with the latest 3 major releases of WordPress” notice.

    Thanks and have a good day!

    Sepi

    (@sepicompanywork)

    hope to see Simple CSV/XLS Exporter again

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘Plugin Vulnerability?’ is closed to new replies.