cleantalk
Vulnerabilities and Security Researches

CSV Importer Improved, CVE-2025-50013

CVE, Research URL

CVE-2025-50013

Home page URL

Security reports for CSV Importer Improved

Application

CSV Importer Improved

Published on
Jun 20, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Jason Judge CSV Importer Improved allows Stored XSS. This issue affects CSV Importer Improved: from n/a through 0.6.1.
Affected versions
Min -, max 0.6.1.
Status
vulnerable
Previous vulnerability researches
Accept Stripe Payments Using Contact Form 7 (CVE-2024-12255) , Dec 13, 2024
Accept Stripe Payments Using Contact Form 7 (CVE-2025-53309) , Jul 03, 2025
New vulnerability
VikRentCar Car Rental Management System (CVE-2025-5322) , Jul 04, 2025
GoZen Forms (CVE-2025-6783) , Jul 04, 2025
GoZen Forms (CVE-2025-6782) , Jul 04, 2025
CSV Importer Improved (CVE-2025-50013) , Jul 04, 2025
WooCommerce PDF Invoice Builder, Create invoices, packing slips and more (CVE-2025-53203) , Jul 04, 2025