Posted by Nitin Venkatesh on Jun 15
# Title: Cross-Site Request Forgery Vulnerability in Users to CSV WordPress
Plugin v1.4.5
# Submitter: Nitin Venkatesh
# Product: Users to CSV WordPress Plugin
# Product URL: https://wordpress.org/plugins/users-to-csv/ (disabled)
# Plugin SVN URL: https://plugins.svn.wordpress.org/users-to-csv/ (active)
# Vulnerability Type: Cross-site Request Forgery [CWE-352]
# Affected Versions: v1.4.5 and possibly below.
# Tested versions: v1.4.5
# Fixed…