Falhas do tipo CWE-1236
171 resultadosCVE-2023-41798MEDIUMWordPress Directorist Plugin <= 7.7.1 is vulnerable to CSV InjectionEPSS 0.5%CVE-2023-36527MEDIUMWordPress Post to CSV by BestWebSoft Plugin <= 1.4.0 is vulnerable to CSV InjectionEPSS 0.5%CVE-2020-36941MEDIUMKnockpy 4.1.1 - CSV InjectionEPSS 0.5%CVE-2023-5424MEDIUMWS Form LITE <= 1.9.217 - Unauthenticated CSV InjectionEPSS 0.5%CVE-2023-5527HIGHBusiness Directory Plugin <= 6.4.3 - Authenticated (Author+) CSV InjectionEPSS 0.5%CVE-2021-38424MEDIUMDelta Electronics DIALinkEPSS 0.5%CVE-2023-46401HIGHKWHotel 0.47 is vulnerable to CSV Formula Injection in the invoice adding function.EPSS 0.5%CVE-2023-28958HIGHIBM Watson Knowledge Catalog CSV injectionEPSS 0.5%CVE-2024-3232HIGHFormula Injection VulnerabilityEPSS 0.5%CVE-2024-53260MEDIUMCourse Roster vulnerable to CSV Injection in AutolabEPSS 0.5%CVE-2023-3302MEDIUMImproper Neutralization of Formula Elements in a CSV File in admidio/admidioEPSS 0.5%CVE-2023-3493HIGHImproper Neutralization of Formula Elements in a CSV File in fossbilling/fossbillingEPSS 0.4%CVE-2023-45597MEDIUMA CWE-1236 “Improper Neutralization of Formula Elements in a CSV File” vulnerability in the “file_configuration” functionality of the web apEPSS 0.4%CVE-2023-53929MEDIUMphpMyFAQ 3.1.12 CSV Injection via User Profile ExportEPSS 0.4%CVE-2024-25007HIGHEricsson Network Manager - Improper Neutralization of Formula Elements VulnerabilityEPSS 0.4%CVE-2023-25348HIGHChurchCRM 4.5.3 was discovered to contain a CSV injection vulnerability via the Last Name and First Name input fields when creating a new peEPSS 0.4%CVE-2024-27785MEDIUMAn improper neutralization of formula elements in a CSV File [CWE-1236] vulnerability in Fortinet FortiAIOps 2.0.0 may allow a remote authenEPSS 0.4%CVE-2024-51094HIGHAn issue in Snipe-IT v.7.0.13 build 15514 allows a low-privileged attacker to modify their profile name and inject a malicious payload into EPSS 0.4%CVE-2025-50572HIGHArcher 6.11.00204.10014 allows attackers to execute arbitrary code via crafted system inputs that would be exported into the CSV and be execEPSS 0.4%CVE-2023-53905MEDIUMProjectSend r1605 CSV Injection via User Account Export FunctionalityEPSS 0.4%