102 matches found
CVE-2020-10131
SearchBlox before Version 9.2.1 is vulnerable to CSV macro injection in "Featured Results" parameter...
EUVD-2021-26498
Malware in sbrugna...
EUVD-2020-17861
Malware in sbrugna...
EUVD-2020-23152
Malware in sbrugna...
EUVD-2020-2594
Malware in sbrugna...
CVE-2025-35033
Medical Informatics Engineering Enterprise Health has a CSV injection vulnerability that allows a remote, authenticated attacker to inject macros in downloadable CSV files. This issue is fixed as of 2025-03-14...
CVE-2025-35033
Medical Informatics Engineering Enterprise Health has a CSV injection vulnerability that allows a remote, authenticated attacker to inject macros in downloadable CSV files. This issue is fixed as of 2025-03-14...
CVE-2025-35033
CVE-2025-35033 concerns Medical Informatics Engineering Enterprise Health. Affected: the platform's CSV export/download feature allowing a remote, authenticated attacker to inject macros into downloadable CSV files (CSV injection). Root cause details are not expanded in the provided documents bey...
CVE-2025-35033 Medical Informatics Engineering Enterprise Health CSV injection
Medical Informatics Engineering Enterprise Health has a CSV injection vulnerability that allows a remote, authenticated attacker to inject macros in downloadable CSV files. This issue is fixed as of 2025-03-14...
Exploit for Code Injection in Rejetto Http_File_Server
CVE-2014-6287 - Rejetto HTTP File Server RCE Exploit !Rust...
CVE-2021-3154
An issue was discovered in SolarWinds Serv-U before 15.2.2. Unauthenticated attackers can retrieve cleartext passwords via macro Injection. NOTE: this had a distinct fix relative to CVE-2020-35481...
CVE-2020-9347
Zoho ManageEngine Password Manager Pro through 10.x has a CSV Excel Macro Injection vulnerability via a crafted name that is mishandled by the Export Passwords feature. NOTE: the vendor disputes the significance of this report because they expect CSV risk mitigation to be provided by an external...
CVE-2020-35481
SolarWinds Serv-U before 15.2.2 allows Unauthenticated Macro Injection...
CVE-2020-10131
SearchBlox before Version 9.2.1 is vulnerable to CSV macro injection in "Featured Results" parameter...
CVE-2020-10131
SearchBlox before Version 9.2.1 is vulnerable to CSV macro injection in "Featured Results" parameter...
Design/Logic Flaw
SearchBlox before Version 9.2.1 is vulnerable to CSV macro injection in "Featured Results" parameter...
CVE-2020-10131
CVE-2020-10131 affects SearchBlox prior to version 9.2.1, where a CSV macro injection in the “Featured Results” parameter can be triggered, leading to high-impact outcomes (per CVSS 3.1: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H; base score 9.8). Connected feeds corroborate vulnerability in SearchBlox ...
CVE-2020-10131 CVE-2020-10131
SearchBlox before Version 9.2.1 is vulnerable to CSV macro injection in "Featured Results" parameter...
CVE-2020-10131 CVE-2020-10131
SearchBlox before Version 9.2.1 is vulnerable to CSV macro injection in "Featured Results" parameter...
SearchBlox Security Breach
SearchBlox is an application from US-based SearchBlox, Inc. provides a powerful enterprise search architecture for on-premise or cloud deployments. A security vulnerability exists in SearchBlox versions prior to 9.2.1. An attacker can exploit the vulnerability to perform a CSV macro injection...