Lucene search
+L

5 matches found

redhatcve
redhatcve
added 2025/02/05 2:51 p.m.11 views

CVE-2020-15255

In Anuko Time Tracker before verion 1.19.23.5325, due to not properly filtered user input a CSV export of a report could contain cells that are treated as formulas by spreadsheet software for example, when a cell value starts with an equal sign. This is fixed in version 1.19.23.5325...

8.7CVSS6.5AI score0.03504EPSS
Exploits3
packetstorm
packetstorm
added 2020/11/10 12:0 a.m.255 views

Anuko Time Tracker 1.19.23.5325 CSV Injection

Exploit Title: Anuko Time Tracker 1.19.23.5325 - CSV/Formula Injection Date: 2020-10-17 Exploit Author: Mufaddal Masalawala Vendor Homepage: https://www.anuko.com/ Software Link: https://www.anuko.com/time-tracker/index.htm Version: 1.19.23.5325 Tested on: Kali Linux 2020.3 CVE: CVE-2020-15255...

6.5CVSS0.2AI score0.03504EPSS
Exploits3
exploitdb
exploitdb
added 2020/11/10 12:0 a.m.406 views

Anuko Time Tracker 1.19.23.5325 - CSV/Formula Injection

Exploit Title: Anuko Time Tracker 1.19.23.5325 - CSV/Formula Injection Date: 2020-10-17 Exploit Author: Mufaddal Masalawala Vendor Homepage: https://www.anuko.com/ Software Link: https://www.anuko.com/time-tracker/index.htm Version: 1.19.23.5325 Tested on: Kali Linux 2020.3 CVE: CVE-2020-15255...

8.7CVSS7AI score0.03504EPSS
Exploits3
cvelist
cvelist
added 2020/10/16 4:20 p.m.28 views

CVE-2020-15255 CSV injection in Anuko Time Tracker

In Anuko Time Tracker before verion 1.19.23.5325, due to not properly filtered user input a CSV export of a report could contain cells that are treated as formulas by spreadsheet software for example, when a cell value starts with an equal sign. This is fixed in version 1.19.23.5325...

8.7CVSS8.4AI score0.03504EPSS
Exploits3References4
cve
cve
added 2020/10/16 4:20 p.m.62 views

CVE-2020-15255

CVE-2020-15255 affects Anuko Time Tracker prior to 1.19.23.5325, where a CSV export of a report could contain cells treated as formulas due to insufficient input filtering (CSV/Formula Injection). The underlying vulnerability is the lack of proper filtering of user input in exports, which could a...

8.7CVSS7.2AI score0.03504EPSS
Exploits3References4Affected Software1
Rows per page
Query Builder