exploitDog

GHSA-c5xg-pgx2-gmrf

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

Описание

The Sign-up Sheets WordPress plugin before 1.0.14 does not not sanitise or validate the Sheet title when generating the CSV to export, which could lead to a CSV injection issue

The Sign-up Sheets WordPress plugin before 1.0.14 does not not sanitise or validate the Sheet title when generating the CSV to export, which could lead to a CSV injection issue

Ссылки

EPSS

Процентиль: 74%

0.0084

Низкий

CVE ID

Дефекты

CWE-1236

Связанные уязвимости

CVE-2021-24441

CVSS3: 8

nvd

больше 4 лет назад

The Sign-up Sheets WordPress plugin before 1.0.14 does not not sanitise or validate the Sheet title when generating the CSV to export, which could lead to a CSV injection issue

EPSS

Процентиль: 74%

0.0084

Низкий

CVE ID

Дефекты

CWE-1236