Weaknesses of type CWE-1236
170 resultsCVE-2020-36962MEDIUMTendenci 12.3.1 - CSV/ Formula InjectionEPSS 10.7%CVE-2022-0142—Visual Form Builder < 3.0.6 - CSV InjectionEPSS 2.6%CVE-2019-17661HIGHA CSV injection in the codepress-admin-columns (aka Admin Columns) plugin 3.4.6 for WordPress allows malicious users to gain remote control EPSS 2.4%CVE-2022-1544HIGHFormula Injection/CSV Injection due to Improper Neutralization of Formula Elements in CSV File in luyadev/yii-helpersEPSS 2.4%CVE-2023-29918MEDIUMRosarioSIS 10.8.4 is vulnerable to CSV injection via the Periods Module.EPSS 2.2%CVE-2021-38180—SAP Business One - version 10.0, allows an attacker to inject formulas when exporting data to Excel (CSV injection) due to improper sanitatiEPSS 2.0%CVE-2024-29375CRITICALCSV Injection vulnerability in Addactis IBNRS v.3.10.3.107 allows a remote attacker to execute arbitrary code via a crafted .ibnrs file to tEPSS 1.5%CVE-2021-41270MEDIUMCSV Injection in SymfonyEPSS 1.4%CVE-2022-3574CRITICALWPForms Pro < 1.7.7 - CSV InjectionEPSS 1.3%CVE-2021-24441—Sign-up Sheets < 1.0.14 - Authenticated CSV InjectionEPSS 1.3%CVE-2022-22689—CA Harvest Software Change Manager versions 13.0.3, 13.0.4, 14.0.0, and 14.0.1, contain a vulnerability in the CSV export functionality, dueEPSS 1.3%CVE-2022-3393CRITICALPost to CSV by BestWebSoft <= 1.4.0 - Author+ CSV InjectionEPSS 1.3%CVE-2022-24770HIGHImproper Neutralization of Formula Elements in a CSV File in Gradio FlaggingEPSS 1.2%CVE-2022-3463CRITICALFluentForm < 4.3.13 - CSV InjectionEPSS 1.2%CVE-2022-22121HIGHNocoDB - CSV Injection in User ManagementEPSS 1.2%CVE-2020-36503—Connections Business Directory < 9.7 - Admin+ CSV InjectionEPSS 1.2%CVE-2022-1539—Exports and Reports < 0.9.2 - Contributor+ CSV InjectionEPSS 1.2%CVE-2022-2112CRITICALImproper Neutralization of Formula Elements in a CSV File in inventree/inventreeEPSS 1.2%CVE-2023-33410HIGHMinical 1.0.0 and earlier contains a CSV injection vulnerability which allows an attacker to execute remote code. The vulnerability exists dEPSS 1.2%CVE-2022-2240—Request a Quote <= 2.3.7 - CSV InjectionEPSS 1.2%