Total
213 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2022-29315 | 1 Invicti | 1 Acunetix | 2022-04-27 | 8.8 High |
| Invicti Acunetix before 14 allows CSV injection via the Description field on the Add Targets page, if the Export CSV feature is used. | ||||
| CVE-2021-43257 | 1 Mantisbt | 1 Mantisbt | 2022-04-22 | 7.8 High |
| Lack of Neutralization of Formula Elements in the CSV API of MantisBT before 2.25.3 allows an unprivileged attacker to execute code or gain access to information when a user opens the csv_export.php generated CSV file in Excel. | ||||
| CVE-2020-10460 | 1 Chadhaajay | 1 Phpkb | 2022-04-18 | 4.9 Medium |
| admin/include/operations.php (via admin/email-harvester.php) in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject untrusted input inside CSV files via the POST parameter data. | ||||
| CVE-2021-43515 | 1 Kimai | 1 Kimai | 2022-04-14 | 7.8 High |
| CSV Injection (aka Excel Macro Injection or Formula Injection) exists in creating new timesheet in Kimai. By filling the Description field with malicious payload, it will be mistreated while exporting to a CSV file. | ||||
| CVE-2022-23868 | 1 Ruoyi | 1 Ruoyi | 2022-04-04 | 7.8 High |
| RuoYi v4.7.2 contains a CSV injection vulnerability through ruoyi-admin when a victim opens .xlsx log file. | ||||
| CVE-2022-26249 | 1 Surveyking Project | 1 Surveyking | 2022-03-30 | 9.8 Critical |
| Survey King v0.3.0 does not filter data properly when exporting excel files, allowing attackers to execute arbitrary code or access sensitive information via a CSV injection attack. | ||||
| CVE-2022-24770 | 1 Gradio Project | 1 Gradio | 2022-03-24 | 8.8 High |
| `gradio` is an open source framework for building interactive machine learning models and demos. Prior to version 2.8.11, `gradio` suffers from Improper Neutralization of Formula Elements in a CSV File. The `gradio` library has a flagging functionality which saves input/output data into a CSV file on the developer's computer. This can allow a user to save arbitrary text into the CSV file, such as commands. If a program like MS Excel opens such a file, then it automatically runs these commands, which could lead to arbitrary commands running on the user's computer. The problem has been patched as of `2.8.11`, which escapes the saved csv with single quotes. As a workaround, avoid opening csv files generated by `gradio` with Excel or similar spreadsheet programs. | ||||
| CVE-2021-39022 | 1 Ibm | 1 Guardium Data Encryption | 2022-03-22 | 8.8 High |
| IBM Guardium Data Encryption (GDE) 4.0.0.0 and 5.0.0.0 saves user-provided information into a Comma-Separated Value (CSV) file, but it does not neutralize or incorrectly neutralizes special elements that could be interpreted as a command when the file is opened by spreadsheet software. IBM X-Force ID: 213858. | ||||
| CVE-2022-22689 | 1 Broadcom | 1 Ca Harvest Software Change Manager | 2022-02-10 | 8.8 High |
| CA Harvest Software Change Manager versions 13.0.3, 13.0.4, 14.0.0, and 14.0.1, contain a vulnerability in the CSV export functionality, due to insufficient input validation, that can allow a privileged user to potentially execute arbitrary code or commands. | ||||
| CVE-2022-22121 | 1 Xgenecloud | 1 Nocodb | 2022-01-19 | 8.0 High |
| In NocoDB, versions 0.81.0 through 0.83.8 are affected by CSV Injection vulnerability (Formula Injection). A low privileged attacker can create a new table to inject payloads in the table rows. When an administrator accesses the User Management endpoint and exports the data as a CSV file and opens it, the payload gets executed. | ||||
| CVE-2020-9372 | 1 Codepeople | 1 Appointment Booking Calendar | 2022-01-01 | 7.8 High |
| The Appointment Booking Calendar plugin before 1.3.35 for WordPress allows user input (in fields such as Description or Name) in any booking form to be any formula, which then could be exported via the Bookings list tab in /wp-admin/admin.php?page=cpabc_appointments.php. The attacker could achieve remote code execution via CSV injection. | ||||
| CVE-2021-23654 | 1 Html-to-csv Project | 1 Html-to-csv | 2021-12-20 | 9.8 Critical |
| This affects all versions of package html-to-csv. When there is a formula embedded in a HTML page, it gets accepted without any validation and the same would be pushed while converting it into a CSV file. Through this a malicious actor can embed or generate a malicious link or execute commands via CSV files. | ||||
| CVE-2021-41824 | 1 Craftcms | 1 Craft Cms | 2021-11-30 | 8.8 High |
| Craft CMS before 3.7.14 allows CSV injection. | ||||
| CVE-2021-36334 | 1 Dell | 1 Emc Cloud Link | 2021-11-27 | 6.8 Medium |
| Dell EMC CloudLink 7.1 and all prior versions contain a CSV formula Injection Vulnerability. A remote high privileged attacker, may potentially exploit this vulnerability, leading to arbitrary code execution on end user machine | ||||
| CVE-2020-15255 | 1 Anuko | 1 Time Tracker | 2021-11-18 | 7.3 High |
| In Anuko Time Tracker before verion 1.19.23.5325, due to not properly filtered user input a CSV export of a report could contain cells that are treated as formulas by spreadsheet software (for example, when a cell value starts with an equal sign). This is fixed in version 1.19.23.5325. | ||||
| CVE-2021-38424 | 1 Deltaww | 1 Dialink | 2021-11-05 | 7.8 High |
| The tag interface of Delta Electronics DIALink versions 1.2.4.0 and prior is vulnerable to an attacker injecting formulas into the tag data. Those formulas may then be executed when it is opened with a spreadsheet application. | ||||
| CVE-2021-40848 | 1 Mahara | 1 Mahara | 2021-11-05 | 7.8 High |
| In Mahara before 20.04.5, 20.10.3, 21.04.2, and 21.10.0, exported CSV files could contain characters that a spreadsheet program could interpret as a command, leading to execution of a malicious string locally on a device, aka CSV injection. | ||||
| CVE-2020-36503 | 1 Connections-pro | 1 Connections Business Directory | 2021-11-03 | 8.0 High |
| The Connections Business Directory WordPress plugin before 9.7 does not validate or sanitise some connections' fields, which could lead to a CSV injection issue | ||||
| CVE-2021-37131 | 1 Huawei | 3 Imanager Neteco, Imanager Neteco 6000, Manageone | 2021-10-29 | 6.8 Medium |
| There is a CSV injection vulnerability in ManageOne, iManager NetEco and iManager NetEco 6000. An attacker with high privilege may exploit this vulnerability through some operations to inject the CSV files. Due to insufficient input validation of some parameters, the attacker can exploit this vulnerability to inject CSV files to the target device. | ||||
| CVE-2021-24016 | 1 Fortinet | 1 Fortimanager | 2021-10-08 | 6.3 Medium |
| An improper neutralization of formula elements in a csv file in Fortinet FortiManager version 6.4.3 and below, 6.2.7 and below allows attacker to execute arbitrary commands via crafted IPv4 field in policy name, when exported as excel file and opened unsafely on the victim host. | ||||