1 matches found
CSV Injection
cfme is vulnerable to CSV injection. The orchestration templates allow attackers to inject arbitrary CSV content such as formulas and exfiltrate data or further exploit other vulnerabilities...