CVE-2018-9137

Open-AudIT before 2.2 has CSV Injection...

Design/Logic Flaw

Open-AudIT before 2.2 has CSV Injection...

CVE-2018-9137

Open-AudIT before 2.2 has CSV Injection...

CVE-2018-9137

Open-AudIT is vulnerable to CSV Injection in versions before 2.2 via the CSV export feature (CVE-2018-9137). The issue is documented across multiple sources as Open-AudIT 2.1 with CSV Macro Injection/Vulnerability. Impacted component: the CSV export path; underlying risk is injection that can lea...

Mautic CSV Injection Vulnerability

Mautic is an open source marketing automation software. The software monitors and manages websites, sends emails and manages customer resources. A CSV injection vulnerability exists in Mautic versions prior to 2.13.0. An attacker can exploit this vulnerability by sending a specially crafted reque...

Input validation

Mautic before 2.13.0 allows CSV injection...

CVE-2018-8092

Mautic before 2.13.0 allows CSV injection...

CVE-2018-8092

Mautic before 2.13.0 allows CSV injection...

CVE-2018-8092

CVE-2018-8092 affects Mautic prior to 2.13.0, enabling a CSV injection in exported contact lists. The issue is documented in multiple sources (e.g., GHSA-29V9-2FPX-J5G9 and OSV/GHSA advisories) with a fix recommended: update to 2.13.0 or later. The connected documents confirm the vulnerability is...

CVE-2018-8092

Mautic before 2.13.0 allows CSV injection...

Dump Active Directory Domain Information: goddi

goddi go dump domain info dumps domain users, groups, domain controllers, and more in CSV output and it runs on Windows and Linux. Functionality StartTLS and TLS tls.Client func connections supported. Connections over TLS are default. All output goes to CSVs and are created in /csv/ in the curren...

Joomla Convert Forms version 2.0.3 - Formula Injection (CSV Injection) Vulnerability

Exploit for php platform in category web applications Exploit Title: Joomla Extension Convert Forms version 2.0.3 - Formula Injection CSV Injection Google Dork: N/A Exploit Author: Jetty Sairam Software Link:...

Command injection

The Convert Forms extension before 2.0.4 for Joomla! is vulnerable to Remote Command Execution using CSV Injection that is mishandled when exporting a Leads file...

CVE-2018-10063

The Convert Forms extension before 2.0.4 for Joomla! is vulnerable to Remote Command Execution using CSV Injection that is mishandled when exporting a Leads file...

CVE-2018-10063

CVE-2018-10063 affects Joomla! Convert Forms extension prior to 2.0.4. The vulnerability is a CSV injection that enables remote command execution when exporting leads/form data, due to how CSV fields are handled during export. Documented impact includes potential arbitrary command execution with ...

CVE-2018-10063

The Convert Forms extension before 2.0.4 for Joomla! is vulnerable to Remote Command Execution using CSV Injection that is mishandled when exporting a Leads file...

Joomla Convert Forms 2.0.3 CSV Injection

Exploit Title: Joomla Extension Convert Forms version 2.0.3 - Formula Injection CSV Injection Google Dork: N/A Date: 12-04-2018 Exploit Author: Jetty Sairam Software Link: https://extensions.joomla.org/extensions/extension/contacts-and-feedback/forms/convert-forms/ Affected Version: 2.03 and befo...

Joomla Convert Forms version 2.0.3 - Formula Injection (CSV Injection)

Joomla Convert Forms version 2.0.3 - Formula Injection CSV Injection Exploit Title: Joomla Extension Convert Forms version 2.0.3 is vulnerable to Formula Injection CSV Injection Google Dork: N/A Date: 12-04-2018 Exploit Author: Jetty Sairam Software Link:...

Joomla! Convert Forms version 2.0.3 - Formula Injection (CSV Injection)

Exploit Title: Joomla Extension Convert Forms version 2.0.3 is vulnerable to Formula Injection CSV Injection Google Dork: N/A Date: 12-04-2018 Exploit Author: Jetty Sairam Software Link: https://extensions.joomla.org/extensions/extension/contacts-and-feedback/forms/convert-forms/ Affected Version...

Convert Forms, 2.0.3, CSV Injection

Convert Forms by Tassos.gr, versions 2.0.3 and previous, CSV Injection resolution: update to 2.0.4 update notice: https://www.tassos.gr/blog/convert-forms-2-0-4-security-release...