Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

Vulnrichment
Vulnrichmentadded 2025/09/08 12:0 a.m.1 views

CVE-2025-56267

A CSV injection vulnerability in the /idprofiles endpoint of Avigilon ACM v7.10.0.20 allows attackers to execute arbitrary code via suuplying a crafted Excel file...

7.6AI score0.00285EPSS
Exploits1References3
CNNVD
CNNVDadded 2023/12/07 12:0 a.m.3 views

Car Rental Script Security Vulnerability

Car Rental Script is an open source vehicle rental script from GZ Script. A security vulnerability exists in Car Rental v3.0, which originates from a CSV injection vulnerability in the Language Labels Export operation...

8.8CVSS8.8AI score0.00228EPSS
Exploits2References3
CNNVD
CNNVDadded 2023/07/10 12:0 a.m.2 views

IBM Cloud Pak for Data 安全漏洞

IBM Cloud Pak for Data is a cloud-native solution from International Business Machines IBM that allows customers to use data and analyze it quickly and efficiently. A security vulnerability exists in IBM Cloud Pak for Data version 4.0 that stems from vulnerability to CSV injection attacks...

7.8CVSS7.4AI score0.00122EPSS
Exploits0References3
CNNVD
CNNVDadded 2023/06/22 12:0 a.m.4 views

Sage Group Sage X3 安全漏洞

Sage Group Sage X3 is a software application from Sage Group UK. An enterprise resource planning product developed for mature organizations. A security vulnerability exists in Sage X3 version 12.14.0.50-0, which stems from vulnerability to CSV injection attacks...

7.2CVSS7.1AI score0.00105EPSS
Exploits0References3
Snyk
Snykadded 2022/04/15 12:0 a.m.3 views

CSV Injection

Overview mantisbt/mantisbt is a mantis bug tracker. Affected versions of this package are vulnerable to CSV Injection through the csvexport.php API. An attacker can execute arbitrary code or access sensitive information by embedding malicious formulas in the CSV content that is executed when the...

8.4CVSS7.6AI score0.00724EPSS
Exploits1References2
OSV
OSVadded 2020/10/12 2:15 p.m.1 views

CVE-2020-4302

IBM Cognos Analytics 11.0 and 11.1 could allow a remote attacker to execute arbitrary code on the system, caused by a CSV injection. By persuading a victim to open a specially-crafted excel file, an attacker could exploit this vulnerability to execute arbitrary code on the system. IBM X-Force ID:...

7.8CVSS6.7AI score
Exploits0References2
OSV
OSVadded 2020/05/18 7:15 p.m.1 views

CVE-2020-13146

Studio in Open edX Ironwood 2.5 allows CSV injection because an added cohort in CourseInstructorCohorts may contain a formula that is exported via the "CourseData DownloadsReportsDownload profile info" feature...

8.8CVSS7.3AI score0.00444EPSS
Exploits1References1
OSV
OSVadded 2019/06/06 2:29 p.m.1 views

CVE-2019-12134

CSV Injection aka Excel Macro Injection or Formula Injection exists in the export feature in Workday through 32 via a value provided by a low-privileged user in a contact form field that is mishandled in a CSV export...

8.8CVSS7.3AI score0.00475EPSS
Exploits0References1
OSV
OSVadded 2018/03/28 4:29 a.m.2 views

CVE-2018-9107

CSV Injection aka Excel Macro Injection or Formula Injection exists in the export feature in the Acyba AcyMailing extension before 5.9.6 for Joomla! via a value that is mishandled in a CSV export...

8.8CVSS5.8AI score
Exploits0References4
Rows per page
Query Builder