Lucene search
K

4 matches found

NVD
NVD
added 2021/02/06 2:15 a.m.18 views

CVE-2020-9205

There has a CSV injection vulnerability in ManageOne 8.0.1. An attacker with common privilege may exploit this vulnerability through some operations to inject the CSV files. Due to insufficient input validation of some parameters, the attacker can exploit this vulnerability to inject CSV files to...

4.9CVSS0.00624EPSS
Exploits0References1
Prion
Prion
added 2021/02/06 2:15 a.m.13 views

Input validation

There has a CSV injection vulnerability in ManageOne 8.0.1. An attacker with common privilege may exploit this vulnerability through some operations to inject the CSV files. Due to insufficient input validation of some parameters, the attacker can exploit this vulnerability to inject CSV files to...

4CVSS5.2AI score0.00624EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/02/06 1:40 a.m.23 views

CVE-2020-9205

There has a CSV injection vulnerability in ManageOne 8.0.1. An attacker with common privilege may exploit this vulnerability through some operations to inject the CSV files. Due to insufficient input validation of some parameters, the attacker can exploit this vulnerability to inject CSV files to...

5.2AI score0.00624EPSS
Exploits0References1
CVE
CVE
added 2021/02/06 1:40 a.m.94 views

CVE-2020-9205

CVE-2020-9205 is a CSV injection vulnerability affecting Huawei ManageOne 8.0.1. The root cause is insufficient input validation of certain parameters during CSV-related operations, enabling an attacker with basic privileges to inject CSV content into generated files. Several connected sources co...

4.9CVSS5.2AI score0.00624EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder