2 matches found
CVE-2023-54348
ERPGo SaaS 3.9 contains a CSV injection vulnerability that allows authenticated attackers to inject spreadsheet formulas into vendor name fields that execute on the workstation of users who open the exported CSV in a spreadsheet application. Attackers can add malicious formulas like =10+20+cmd|' ...
CVE-2023-54348
creationtimestamp| type| source ---|---|--- 2026-05-05 14:42:41+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ml4gbltfn42h...