CVE-2021-25960
CVE-2021-25960 applies to SuiteCRM versions 7.10.29–7.10.31 and 7.11.18–7.11.19, which are affected by a CSV Injection (Formula Injection) in the accounts module. A low-privilege user can inject payloads into input fields; when an administrator exports data to CSV via the accounts module and open...