cleantalk
Vulnerabilities and Security Researches

CSV Importer Improved, CVE-2025-50013

CVE, Research URL

CVE-2025-50013

Home page URL

Security reports for CSV Importer Improved

Application

CSV Importer Improved

Published on
Jun 20, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Jason Judge CSV Importer Improved allows Stored XSS. This issue affects CSV Importer Improved: from n/a through 0.6.1.
Affected versions
Min -, max 0.6.1.
Status
vulnerable
Previous vulnerability researches
Advanced Flamingo (CVE-2023-52226) , Jun 07, 2024
Flamingo , Apr 16, 2025
Flamingo (022a9997dfc335fe7d818f90b085eb691dd3ba3c) , Jun 07, 2024
New vulnerability
Element Pack Elementor Addons (Header Footer, Free Template Library, Grid, Carousel, Table, Parallax Animation, Register Form, (CVE-2025-5944) , Jul 05, 2025
Auto Thickbox (3ec8c103834f70650b61fa3cc46bc2b4a3c7abbf) , Jul 05, 2025
Smart Docs (CVE-2025-6787) , Jul 05, 2025
Change Cart button Colors WooCommerce (CVE-2025-52783) , Jul 05, 2025
Contact Form 7 Database Addon – CFDB7 (CVE-2025-6740) , Jul 05, 2025