CVE-2023-4140
WP Ultimate CSV Importer <= 7.9.8 - Arbitrary Usermeta Update to Authenticated (Author+) Privilege Escalation
CVSS Score
6.6
EPSS Score
0.0%
EPSS Percentile
0th
The WP Ultimate CSV Importer plugin for WordPress is vulnerable to privilege escalation in versions up to, and including, 7.9.8 due to insufficient restriction on the 'get_header_values' function. This makes it possible for authenticated attackers, with minimal permissions such as an author, if the administrator previously grants access in the plugin settings, to modify their user role by supplying the 'wp_capabilities->cus1' parameter.
| CWE | CWE-269 |
| Vendor | smackcoders |
| Product | wp ultimate csv importer – import csv, xml & excel into wordpress |
| Published | Aug 4, 2023 |
| Last Updated | Apr 8, 2026 |
Stay Ahead of the Next One
Get instant alerts for smackcoders wp ultimate csv importer – import csv, xml & excel into wordpress
Be the first to know when new medium vulnerabilities affecting smackcoders wp ultimate csv importer – import csv, xml & excel into wordpress are published — delivered to Slack, Telegram or Discord.
Get Free Alerts →
Free · No credit card · 60 sec setup
CVSS v3 Breakdown
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Affected Versions
smackcoders / WP Ultimate CSV Importer – Import CSV, XML & Excel into WordPress
0 ≤ 7.9.8
References
wordfence.com: https://www.wordfence.com/threat-intel/vulnerabilities/id/5fdba41f-daa5-44e8-bc47-aa8b7bd31054?source=cve plugins.trac.wordpress.org: https://plugins.trac.wordpress.org/browser/wp-ultimate-csv-importer/tags/7.9.6/importExtensions/ImportHelpers.php#L205 plugins.trac.wordpress.org: https://plugins.trac.wordpress.org/changeset/2944635/wp-ultimate-csv-importer/trunk/wp-ultimate-csv-importer.php
Credits
István Márton