2 matches found
CVE-2023-45597
A CWE-1236 “Improper Neutralization of Formula Elements in a CSV File” vulnerability in the “fileconfiguration” functionality of the web application concerning the function “exportfile” allows a remote authenticated attacker to inject arbitrary formulas inside generated CSV files. This issue...
CVE-2023-45597
The CVE-2023-45597 entry describes a CWE-1236 vulnerability in the AiLux imx6 bundle, specifically in the file_configuration/export_file function. An authenticated, remote attacker can inject arbitrary formulas into generated CSV files due to improper neutralization of formula elements in CSV out...