The Export Users to CSV plugin through 1.4.2 for WordPress allows CSV Injection. Date published : 2020-02-28 https://wpvulndb.com/vulnerabilities/10094 https://