Описание
Ghost allows CSV Injection during member CSV export
Ghost before 5.82.0 allows CSV Injection during a member CSV export.
Пакеты
Наименование
@tryghost/members-csv
npm
Затронутые версииВерсия исправления
< 5.82.0
5.82.0
Связанные уязвимости
CVSS3: 8.8
nvd
больше 1 года назад
Ghost before 5.82.0 allows CSV Injection during a member CSV export.
CVSS3: 8.8
debian
больше 1 года назад
Ghost before 5.82.0 allows CSV Injection during a member CSV export.