exploitDog

GHSA-c77w-6vg2-c6cj

Опубликовано: 21 нояб. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

The Contact Form 7 Database Addon WordPress plugin before 1.2.6.5 does not validate data when output it back in a CSV file, which could lead to CSV injection

The Contact Form 7 Database Addon WordPress plugin before 1.2.6.5 does not validate data when output it back in a CSV file, which could lead to CSV injection

Ссылки

EPSS

Процентиль: 77%

0.0103

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-1236

Связанные уязвимости

CVE-2022-3634

CVSS3: 9.8

nvd

около 3 лет назад

The Contact Form 7 Database Addon WordPress plugin before 1.2.6.5 does not validate data when output it back in a CSV file, which could lead to CSV injection

EPSS

Процентиль: 77%

0.0103

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-1236