2 matches found
CVE-2022-1202
Summary of CVE-2022-1202 : The WP-CRM WordPress plugin, up to version 1.2.1, does not validate or sanitize fields when exporting people to CSV, enabling a CSV injection vulnerability. The root cause is inadequate input validation during CSV export, allowing crafted values in fields such as Displa...
CVE-2022-1202 WP-CRM <= 1.2.1 - CSV Injection
The WP-CRM WordPress plugin through 1.2.1 does not validate and sanitise fields when exporting people to a CSV file, leading to a CSV injection vulnerability...