Carazo Import And Export Users And Customers
7 CVEs affecting Carazo Import And Export Users And Customers. Latest disclosed: 2026-05-02. Critical: 0, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-7641 | High | 8.8 | 2026-05-02 | The Import and export users and customers plugin for WordPress is vulnerable to Privilege Escalation in all versions up to and including 2.0.8 via the `save_ex… |
CVE-2026-3629 | High | 8.1 | 2026-03-21 | The Import and export users and customers plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 1.29.7. This is due… |
CVE-2023-6583 | Medium | 6.6 | 2024-01-11 | The Import and export users and customers plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 1.24.2 via the Recurr… |
CVE-2023-6624 | Medium | 4.9 | 2024-01-11 | The Import and export users and customers plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcode(s) in all versions up to… |
CVE-2024-4656 | Medium | 4.4 | 2024-05-15 | The Import and export users and customers plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the user agent header in all versions up to, an… |
CVE-2024-4734 | Medium | 4.4 | 2024-05-15 | The Import and export users and customers plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and inclu… |
CVE-2024-1050 | Medium | 4.3 | 2024-05-04 | The Import and export users and customers plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the ajax… |