12 matches found
EUVD-2022-3691
Malicious code in bioql PyPI...
CVE-2022-28481
CSV-Safe gem 3.0.0 doesn't filter out special characters which could trigger CSV Injection...
CSV Injection
csv-safe is vulnerable to CSV injection. The library doesn't properly filter out special characters in str parameter which allows remote attackers to inject and execute malicious payloads on target system...
GHSA-F55G-X8QQ-2569 CSV-Safe improperly filters special characters potentially leading to CSV injection
CSV-Safe gem 3.0.0 doesn't filter out special characters which could trigger CSV Injection...
CSV-Safe improperly filters special characters potentially leading to CSV injection
CSV-Safe gem 3.0.0 doesn't filter out special characters which could trigger CSV Injection...
CSV-Safe improperly filters special characters potentially leading to CSV injection
CSV-Safe gem 3.0.0 doesn't filter out special characters which could trigger CSV Injection...
CVE-2022-28481
CSV-Safe gem 3.0.0 doesn't filter out special characters which could trigger CSV Injection...
CVE-2022-28481
CSV-Safe gem 3.0.0 doesn't filter out special characters which could trigger CSV Injection...
CVE-2022-28481
CSV-Safe gem 3.0.0 doesn't filter out special characters which could trigger CSV Injection...
Input validation
CSV-Safe gem 3.0.0 doesn't filter out special characters which could trigger CSV Injection...
CVE-2022-28481
CSV-Safe gem 3.0.0 doesn't filter out special characters which could trigger CSV Injection...
CVE-2022-28481
CVE-2022-28481 affects the CSV-Safe Ruby gem prior to 3.0.0, which does not filter out characters that can trigger CSV/Formula Injection in exported CSV files. This is supported by multiple sources (e.g., Red Hat advisory, RubySec/RUBYGEMS notes, OSV/NVD records). Affected component: CSV-Safe gem...