Vjinfotech Wp_import_export_lite

5 CVEs affecting Vjinfotech Wp_import_export_lite. Latest disclosed: 2025-08-05. Critical: 0, High: 3.

Top CVEs affecting Vjinfotech Wp_import_export_lite
CVESeverityScorePublishedSummary
CVE-2025-6207High7.52025-08-05The WP Import Export Lite plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'wpie_tempalte_import' functi…
CVE-2025-5061High7.52025-08-05The WP Import Export Lite plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'wpie_parse_upload_data' func…
CVE-2022-0236High7.52022-01-18The WP Import Export WordPress plugin (both free and premium versions) is vulnerable to unauthenticated sensitive data disclosure due to a missing capability c…
CVE-2025-2839Medium6.42025-04-22The WP Import Export Lite plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘wpiePreviewData’ function in all versions up to, and inclu…
CVE-2024-31308Medium4.42024-04-07Deserialization of Untrusted Data vulnerability in VJInfotech WP Import Export Lite.This issue affects WP Import Export Lite: from n/a through 3.9.26.