exploitDog

GHSA-rcxm-j6w4-fgvv

Опубликовано: 13 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 8.8

Описание

CSV Injection (aka Excel Macro Injection or Formula Injection) exists in the export feature in the Acyba AcyMailing extension before 5.9.6 for Joomla! via a value that is mishandled in a CSV export.

CSV Injection (aka Excel Macro Injection or Formula Injection) exists in the export feature in the Acyba AcyMailing extension before 5.9.6 for Joomla! via a value that is mishandled in a CSV export.

Ссылки

EPSS

Процентиль: 94%

0.11988

Средний

8.8 High

CVSS3

CVE ID

Дефекты

CWE-1236

Связанные уязвимости

CVE-2018-9107

CVSS3: 8.8

nvd

почти 8 лет назад

CSV Injection (aka Excel Macro Injection or Formula Injection) exists in the export feature in the Acyba AcyMailing extension before 5.9.6 for Joomla! via a value that is mishandled in a CSV export.

EPSS

Процентиль: 94%

0.11988

Средний

8.8 High

CVSS3

CVE ID

Дефекты

CWE-1236