← Back

Migrate Users

migrate_users

Vendor: Migrate Users Project • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2021-24477
1Migrate Users Project
1Migrate Users
Jun 17, 2026
Aug 2, 2021
N/A· v4
6.1 MEDIUM· v3
4.3 MEDIUM· v2
The Migrate Users WordPress plugin through 1.0.1 does not sanitise or escape its Delimiter option before outputting in a page, leading to a Stored Cross-Site Scripting issue. Furthermore, the plugin does not have CSRF ch...Show more
The Migrate Users WordPress plugin through 1.0.1 does not sanitise or escape its Delimiter option before outputting in a page, leading to a Stored Cross-Site Scripting issue. Furthermore, the plugin does not have CSRF check in place when saving its options, allowing the issue to be exploited via a CSRF attack.Show less