Export All Posts, Products, Orders, Refunds & Users
Approved changes feed: RSS · Atom
cpe:2.3:a:smackcoders:export_all_posts\,_products\,_orders\,_refunds_\&_users:*:*:*:*:*:wordpress:*:*
part: a version: * update: *
| Vendor | Smackcoders (e878c6d9-526e-5971-b31d-cb731330415c) |
|---|---|
| Product | Export All Posts, Products, Orders, Refunds & Users (e1f61aae-ae77-5250-bb38-947016c892cb) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | wordpress |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2024-12315 |
vulnerable | 2026-06-03 14:54:16.111465 |
Export All Posts, Products, Orders, Refunds & Users <= 2.9.3 - Information Disclosure Through Unprotected Directory
HIGH (7.5)
The Export All Posts, Products, Orders, Refunds & Users plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.9.3 via the exports directory. This makes it possible for unauthenticated attackers to extract sensitive data stored insecurely in the /wp-content/uploads/smack_uci_uploads/exports/ directory which can contain information like exported user data.
Published: 2025-02-12T08:25:42.626Z
Updated: 2026-04-08T16:33:57.808Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-45066 |
vulnerable | 2026-06-03 14:53:07.403624 |
WordPress WP Ultimate Exporter Plugin <= 2.4.1 is vulnerable to Sensitive Data Exposure
MEDIUM (5.9)
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Smackcoders Export All Posts, Products, Orders, Refunds & Users.This issue affects Export All Posts, Products, Orders, Refunds & Users: from n/a through 2.4.1.
Published: 2023-11-30T14:43:05.150Z
Updated: 2026-04-28T16:08:42.678Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-2487 |
vulnerable | 2026-06-03 14:51:43.223482 |
WordPress WP Ultimate Exporter Plugin <= 2.4.1 is vulnerable to Sensitive Data Exposure
MEDIUM (5.9)
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Smackcoders Export All Posts, Products, Orders, Refunds & Users.This issue affects Export All Posts, Products, Orders, Refunds & Users: from n/a through 2.4.1.
Published: 2023-12-21T14:08:49.034Z
Updated: 2026-04-28T16:08:06.230Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.