Vjinfotech Wp Import Export Lite
6 CVEs affecting Vjinfotech Wp Import Export Lite. Latest disclosed: 2026-07-03. Critical: 0, High: 3.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-6207 | High | 7.5 | 2025-08-05 | The WP Import Export Lite plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'wpie_tempalte_import' functi… |
CVE-2025-5061 | High | 7.5 | 2025-08-05 | The WP Import Export Lite plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'wpie_parse_upload_data' func… |
CVE-2022-0236 | High | 7.5 | 2022-01-18 | The WP Import Export WordPress plugin (both free and premium versions) is vulnerable to unauthenticated sensitive data disclosure due to a missing capability c… |
CVE-2025-2839 | Medium | 6.4 | 2025-04-22 | The WP Import Export Lite plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘wpiePreviewData’ function in all versions up to, and inclu… |
CVE-2026-11397 | Medium | 5.5 | 2026-07-03 | The WP Import Export Lite plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to and including 3.9.30 via the wpie_import_uplo… |
CVE-2024-31308 | Medium | 4.4 | 2024-04-07 | Deserialization of Untrusted Data vulnerability in VJInfotech WP Import Export Lite.This issue affects WP Import Export Lite: from n/a through 3.9.26. |