Bhushan B. Patil

**Name of the Vulnerable Software and Affected Versions** Cisco Firepower Management Center (FMC) software (affected versions not specified) **Description** The issue is related to insufficient validation of user-supplied input by the web-based management interface, allowing an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack. This could be exploited by persuading a user to click a crafted link, potentially enabling the attacker to execute arbitrary script code or access sensitive browser-based information. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Advanced Order Export For WooCommerce versions 1.5.4 and earlier **Description** The issue concerns a CSV Injection vulnerability. **Recommendations** For versions 1.5.4 and earlier, update to a version later than 1.5.4 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** WordPress Comments Import & Export versions 2.0.4 and earlier **Description** The issue concerns a CSV Injection vulnerability. **Recommendations** For versions 2.0.4 and earlier, update to a version later than 2.0.4 to resolve the issue.