Falhas do tipo CWE-1236

171 resultados

CVE-2022-38702MEDIUMWordPress WP CSV Exporter Plugin <= 2.0 is vulnerable to CSV InjectionEPSS 0.6%CVE-2022-38061MEDIUMWordPress Export Post Info plugin <= 1.2.0 - Authenticated CSV Injection vulnerabilityEPSS 0.6%CVE-2023-51336HIGHPHPJabbers Meeting Room Booking System v1.0 is vulnerable to CSV Injection vulnerability which allows an attacker to execute remote code. ThEPSS 0.6%CVE-2020-16214—Philips Patient Monitoring Devices Improper Neutralization of Formula Elements in a CSV FileEPSS 0.6%CVE-2021-38963HIGHIBM Aspera Console CSV injectionEPSS 0.6%CVE-2025-55745LOWUnoPim Quick Export feature is vulnerable to CSV injectionEPSS 0.6%CVE-2023-22877HIGHIBM InfoSphere Information Server CSV injectionEPSS 0.6%CVE-2024-47572HIGHAn improper neutralization of formula elements in a csv file in Fortinet FortiSOAR 7.2.1 through 7.4.1 allows attacker to execute unauthorizEPSS 0.6%CVE-2022-44830HIGHSourcecodester Event Registration App v1.0 was discovered to contain multiple CSV injection vulnerabilities via the First Name, Contact and EPSS 0.6%CVE-2023-51302HIGHPHPJabbers Hotel Booking System v4.0 is vulnerable to CSV Injection vulnerability which allows an attacker to execute remote code. The vulneEPSS 0.6%CVE-2022-26867MEDIUMPowerStore SW v2.1.1.0 supports the option to export data to either a CSV or an XLSX file. The data is taken as is, without any validation oEPSS 0.6%CVE-2024-41226HIGHA CSV injection vulnerability in Automation Anywhere Automation 360 version 21094 allows attackers to execute arbitrary code via a crafted pEPSS 0.5%CVE-2022-37786MEDIUMAn issue was discovered in WeCube Platform 3.2.2. There are multiple CSV injection issues: the [Home / Admin / Resources] page, the [Home / EPSS 0.5%CVE-2023-3527MEDIUMAvaya Call Management System CSV injection vulnerabilityEPSS 0.5%CVE-2024-47485MEDIUMThere is a CSV injection vulnerability in some HikCentral Master Lite versions. If exploited, an attacker could build malicious data to geneEPSS 0.5%CVE-2025-4546MEDIUM1Panel-dev MaxKB Knowledge Base Module csv injectionEPSS 0.5%CVE-2023-47295CRITICALA CSV injection vulnerability in NCR Terminal Handler v1.5.1 allows attackers to execute arbitrary commands via injecting a crafted payload EPSS 0.5%CVE-2026-23873MEDIUMHUSTOJ is Vulnerable to Stored CSV Injection (Formula Injection) in Contest Rank ExportEPSS 0.5%CVE-2022-35281MEDIUMIBM Maximo Application Suite command injectionEPSS 0.5%CVE-2023-23796MEDIUMWordPress Form Builder Plugin <= 1.9.9.0 is vulnerable to CSV InjectionEPSS 0.5%

← anteriorpágina 5 / 9próxima →