Smackcoders

smackcoders

24 CVEs • 9 products

Products (9)

Click to collapse

Toggle

Import All Pages, Post Types, Products, Orders, And Users As Xml & Csv

import_all_pages,_post_types,_products,_orders,_and_users_as_xml_&_csv

Wp Ultimate Csv Importer

wp_ultimate_csv_importer

Export All Posts, Products, Orders, Refunds & Users

export_all_posts,_products,_orders,_refunds_&_users

Wp Ultimate Email Marketer Plugin

wp_ultimate_email_marketer_plugin

Ultimate Exporter

ultimate_exporter

Visual Email Designer For Woocommerce

visual_email_designer_for_woocommerce

Lead Form Data Collection To Crm

lead_form_data_collection_to_crm

CVEs (24)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2018-20967 1Smackcoders 1Import All Pages, Post Types, Products, Orders, And Users As Xml & Csv Nov 21, 2024 Aug 14, 2019 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 The wp-ultimate-csv-importer plugin before 5.6.1 for WordPress has CSRF.
CVE-2015-9306 1Smackcoders 1Import All Pages, Post Types, Products, Orders, And Users As Xml & Csv Nov 21, 2024 Aug 12, 2019 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 The wp-ultimate-csv-importer plugin before 3.8.1 for WordPress has XSS.
CVE-2013-3264 1Smackcoders 1Wp Ultimate Email Marketer Plugin Apr 29, 2026 Nov 5, 2013 N/A· v4 N/A· v3 6.4 MEDIUM· v2 The WP Ultimate Email Marketer plugin 1.1.0 and possibly earlier for Wordpress does not properly restrict access to (1) list/edit.php and (2) campaign/editCampaign.php, which allows remote attackers to modify list or cam...Show more The WP Ultimate Email Marketer plugin 1.1.0 and possibly earlier for Wordpress does not properly restrict access to (1) list/edit.php and (2) campaign/editCampaign.php, which allows remote attackers to modify list or campaign data.Show less
CVE-2013-3263 1Smackcoders 1Wp Ultimate Email Marketer Plugin Apr 29, 2026 Nov 5, 2013 N/A· v4 N/A· v3 4.3 MEDIUM· v2 Multiple cross-site scripting (XSS) vulnerabilities in the WP Ultimate Email Marketer plugin 1.1.0 and possibly earlier for Wordpress allow remote attackers to inject arbitrary web script or HTML via the (1) siteurl para...Show more Multiple cross-site scripting (XSS) vulnerabilities in the WP Ultimate Email Marketer plugin 1.1.0 and possibly earlier for Wordpress allow remote attackers to inject arbitrary web script or HTML via the (1) siteurl parameter to campaign/campaignone.php; the (2) action, (3) campaignname, (4) campaignformat, or (5) emailtemplate parameter to campaign/campaigntwo.php; the (6) listid parameter to list/edit.php; the (7) campaignid or (8) siteurl parameter to campaign/editcampaign.php; the (9) campaignid parameter to campaign/selectlistb4send.php; the (10) campaignid, (11) campaignname, (12) campaignsubject, or (13) selectedcampaigns parameter to campaign/sendCampaign.php; or the (14) campaignid, (15) campaignname, (16) campaignformat, or (17) action parameter to campaign/updatecampaign.php.Show less