CVE-2018-9106

2018-03-2804:00:00

mitre

www.cve.org

AI Score

8.8

Confidence

High

EPSS

0.019

Percentile

88.4%

JSON

CSV Injection (aka Excel Macro Injection or Formula Injection) exists in the export feature in the Acyba AcySMS extension before 3.5.1 for Joomla! via a value that is mishandled in a CSV export.

References

www.acyba.com/acysms/change-log.html

www.exploit-db.com/exploits/44370/