High 7.6
2025-03-22< 2.6.3
Export and Import Users and Customers <= 2.6.2 - Authenticated (Administrator+) Server-Side Request Forgery via validate_file Function
Export and Import Users and Customers
Vulnerabilities 10Slug users-customers-import-export-for-wp-woocommerceLatest version 2.7.3WordPress.org →
Minimum safe version
2.6.3
Update to 2.6.3 or later to address 10 fixable vulnerabilities
Latest available2.7.3 ✓
High 7.2
2025-03-22< 2.6.3
Export and Import Users and Customers <= 2.6.2 - Authenticated (Admin+) PHP Object Injection via form_data Parameter
Medium 4.9
2025-03-24< 2.6.3
WordPress Import Export WordPress Users Plugin <= 2.6.2 is vulnerable to Arbitrary File Download
Low 2.7
2025-03-22< 2.6.3
Export and Import Users and Customers <= 2.6.2 - Directory Traversal to Authenticated (Administrator+) Limited Arbitrary File Deletion via admin_log_page Function
Medium 5.4
2024-04-24< 2.5.4
CVE-2024-32835
Medium 4.3
2024-03-29< 2.5.3
CVE-2024-30492
High 7.2
2024-12-13< 2.4.9
WordPress Import Export WordPress Users Plugin <= 2.4.8 is vulnerable to Arbitrary File Upload
High 7.2
2023-07-18< 2.4.2
CVE-2023-3459
High 7.3
2019-08-26< 1.3.2
WordPress Import Export WordPress Users plugin <= 1.3.1 - CSV Injection vulnerability
High 8.8
2020-04-23< 1.3.9
CVE-2020-12074