exploitDog

CVE-2021-47901

Опубликовано: 27 янв. 2026

Источник: nvd

CVSS3: 9.8

EPSS Низкий

Описание

Dirsearch 0.4.1 contains a CSV injection vulnerability when using the --csv-report flag that allows attackers to inject formulas through redirected endpoints. Attackers can craft malicious server redirects with comma-separated paths containing Excel formulas to manipulate the generated CSV report.

Ссылки

EPSS

Процентиль: 19%

0.00059

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-1236

Связанные уязвимости

GHSA-3pqc-wf77-h389

CVSS3: 9.8

github

11 дней назад

Dirsearch 0.4.1 contains a CSV injection vulnerability when using the --csv-report flag that allows attackers to inject formulas through redirected endpoints. Attackers can craft malicious server redirects with comma-separated paths containing Excel formulas to manipulate the generated CSV report.

EPSS

Процентиль: 19%

0.00059

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-1236