5087 matches found
CVE-2025-55745 UnoPim Quick Export feature is vulnerable to CSV injection
UnoPim is an open-source Product Information Management PIM system built on the Laravel framework. Versions 0.3.0 and prior are vulnerable to CSV injection, also known as formula injection, in the Quick Export feature. This vulnerability allows attackers to inject malicious content into exported...
UnoPim 安全漏洞
UnoPim is an open source Product Information Management PIM system based on the Laravel framework by UnoPim Open Source. A security vulnerability exists in UnoPim 0.3.0 and earlier versions, which stems from CSV injection and could lead to remote code execution...
CVE-2025-9241
A weakness has been identified in elunez eladmin up to 2.7. This affects the function exportUser. This manipulation causes csv injection. The attack may be initiated remotely. The exploit has been made available to the public and could be exploited...
ELADMIN 安全漏洞
ELADMIN is a backend management system for elunez personal developers. A security vulnerability exists in ELADMIN 2.7 and earlier versions, which stems from the exportUser function not escaping and filtering exported CSV content, which allows remote attackers to inject malicious CSV loads...
Exploit for CVE-2025-9216
StoreEngine – Powerful WordPress eCommerce Plugin for Payments...
Linux Distros Unpatched Vulnerability : CVE-2018-11652
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - CSV Injection vulnerability in Nikto 2.1.6 and earlier allows remote attackers to inject arbitrary OS commands via the Server field in an HTTP response header,...
Malicious code in zephyr-graviton-csv-bootstrap (npm)
The package zephyr-graviton-csv-bootstrap was found to contain malicious code...
Malicious code in dependencies-envconfig-csv-auriga (npm)
The package dependencies-envconfig-csv-auriga was found to contain malicious code...
Malicious code in csv-uglify-js-protractor-grus (npm)
The package csv-uglify-js-protractor-grus was found to contain malicious code...
Malicious code in csv-mineralogy-pm2-transform (npm)
The package csv-mineralogy-pm2-transform was found to contain malicious code...
Malicious code in csv-cosmicray-mui-spica (npm)
The package csv-cosmicray-mui-spica was found to contain malicious code...
Malicious code in norma-csv-impulse-gatsby (npm)
The package norma-csv-impulse-gatsby was found to contain malicious code...
Malicious code in neuromorphic-terser-csv-dagda (npm)
The package neuromorphic-terser-csv-dagda was found to contain malicious code...
Malicious code in csv-module-mocha-lyra (npm)
The package csv-module-mocha-lyra was found to contain malicious code...
Malicious code in terser-module-csv-promise (npm)
The package terser-module-csv-promise was found to contain malicious code...
MAL-2025-40690 Malicious code in yyf-csv (npm)
The package yyf-csv was found to contain malicious code...
Malicious code in covid19_nagano_csv_to_json (npm)
The package covid19naganocsvtojson was found to contain malicious code...
Malicious code in csv-hermes-cryonics-solis (npm)
The package csv-hermes-cryonics-solis was found to contain malicious code...
Malicious code in public-csv-carpo-cygnus (npm)
The package public-csv-carpo-cygnus was found to contain malicious code...
Malicious code in csv-jekyll-equinox-pegasus (npm)
The package csv-jekyll-equinox-pegasus was found to contain malicious code...