A vulnerability has been found in Magic Export & Import Plugin up to 1.1.x on WordPress and classified as problematic . Impacted is an unknown function of the component CSV File Handler . This manipulation causes information disclosure. This vulnerability is tracked as CVE-2026-5335 . The attack is possible to be carried out remotely. No exploit exists. The affected component should be upgraded.