Lucene search
PatchstackCVE-2023-36527HistoryNov 07, 2023 - 4:15 p.m.
CVE-2023-36527
2023-11-0716:15:28
CWE-1236
Patchstack
web.nvd.nist.gov
13
cve-2023-36527
improper neutralization
formula elements
csv file
bestwebsoft
post to csv
vulnerability
nvd
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
8.5
Confidence
High
EPSS
0.001
Percentile
19.3%
Improper Neutralization of Formula Elements in a CSV File vulnerability in BestWebSoft Post to CSV by BestWebSoft.This issue affects Post to CSV by BestWebSoft: from n/a through 1.4.0.
Affected configurations
Node
bestwebsoftpost_to_csvRangeβ€1.4.0wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| bestwebsoft | post_to_csv | * | cpe:2.3:a:bestwebsoft:post_to_csv:*:*:*:*:*:wordpress:*:* |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "post-to-csv",
"product": "Post to CSV by BestWebSoft",
"vendor": "BestWebSoft",
"versions": [
{
"changes": [
{
"at": "1.4.1",
"status": "unaffected"
}
],
"lessThanOrEqual": "1.4.0",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
prion
prion
Input validation
2023-11-07 16:15:00
cvelist
cvelist
vulnrichment
vulnrichment
nvd
nvd
CVE-2023-36527
2023-11-07 16:15:28
wordfence
wordfence
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
8.5
Confidence
High
EPSS
0.001
Percentile
19.3%
Related for CVE-2023-36527