WordPress · Wp All Import · CVE-2018-0546
**Name of the Vulnerable Software and Affected Versions**
WP All Import plugin versions prior to 3.4.6
**Description**
A cross-site scripting issue allows an attacker to inject arbitrary web script or HTML.
**Recommendations**
For WP All Import plugin versions prior to 3.4.6, update to version 3.4.6 or later to resolve the issue.