CVE-2022-3574 Information

Description

The WPForms Pro WordPress plugin before 1.7.7 does not validate its form data when generating the exported CSV which could lead to CSV injection.

Reference

https://wpscan.com/vulnerability/0eae5189-81af-4344-9e96-dd1f4e223d41