Vulnerabilities > CVE-2018-16308 - Improper Neutralization of Formula Elements in a CSV File vulnerability in Ninjaforms Ninja Forms

CVSS 8.6 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

ninjaforms

CWE-1236

exploit available

NVD

Published: 2018-09-01

Updated: 2020-08-24

Summary

The Ninja Forms plugin before 3.3.14.1 for WordPress allows CSV injection.

Vulnerable Configurations

Part	Description	Count
Application	Ninjaforms Ninjaforms Ninja Forms - Ninjaforms Ninja Forms 2.2.6 Ninjaforms Ninja Forms 2.2.7 Ninjaforms Ninja Forms 2.2.31 Ninjaforms Ninja Forms 2.2.33 Ninjaforms Ninja Forms 2.2.34 Ninjaforms Ninja Forms 2.2.35 Ninjaforms Ninja Forms 2.2.36 Ninjaforms Ninja Forms 2.2.37 Ninjaforms Ninja Forms 2.2.39 Ninjaforms Ninja Forms 2.2.40 Ninjaforms Ninja Forms 2.2.41 Ninjaforms Ninja Forms 2.2.43 Ninjaforms Ninja Forms 2.2.45 Ninjaforms Ninja Forms 2.2.46 Ninjaforms Ninja Forms 2.2.47 Ninjaforms Ninja Forms 2.2.48 Ninjaforms Ninja Forms 2.2.49 Ninjaforms Ninja Forms 2.2.50 Ninjaforms Ninja Forms 2.2.51 Ninjaforms Ninja Forms 2.2.52 Ninjaforms Ninja Forms 2.2.53 Ninjaforms Ninja Forms 2.2.54 Ninjaforms Ninja Forms 2.2.55 Ninjaforms Ninja Forms 2.3 Ninjaforms Ninja Forms 2.3.1 Ninjaforms Ninja Forms 2.3.2 Ninjaforms Ninja Forms 2.3.3 Ninjaforms Ninja Forms 2.3.4 Ninjaforms Ninja Forms 2.3.5 Ninjaforms Ninja Forms 2.3.6 Ninjaforms Ninja Forms 2.3.7 Ninjaforms Ninja Forms 2.3.8 Ninjaforms Ninja Forms 2.4 Ninjaforms Ninja Forms 2.4.1 Ninjaforms Ninja Forms 2.4.2 Ninjaforms Ninja Forms 2.5 Ninjaforms Ninja Forms 2.5.1 Ninjaforms Ninja Forms 2.5.2 Ninjaforms Ninja Forms 2.5.3 Ninjaforms Ninja Forms 2.6 Ninjaforms Ninja Forms 2.6.1 Ninjaforms Ninja Forms 2.6.2 Ninjaforms Ninja Forms 2.6.3 Ninjaforms Ninja Forms 2.6.4 Ninjaforms Ninja Forms 2.6.5 Ninjaforms Ninja Forms 2.7 Ninjaforms Ninja Forms 2.7.1 Ninjaforms Ninja Forms 2.7.2 Ninjaforms Ninja Forms 2.7.3 Ninjaforms Ninja Forms 2.7.4 Ninjaforms Ninja Forms 2.7.5 Ninjaforms Ninja Forms 2.7.6 Ninjaforms Ninja Forms 2.7.7 Ninjaforms Ninja Forms 2.8 Ninjaforms Ninja Forms 2.8.1 Ninjaforms Ninja Forms 2.8.2 Ninjaforms Ninja Forms 2.8.3 Ninjaforms Ninja Forms 2.8.4 Ninjaforms Ninja Forms 2.8.5 Ninjaforms Ninja Forms 2.8.6 Ninjaforms Ninja Forms 2.8.7 Ninjaforms Ninja Forms 2.8.8 Ninjaforms Ninja Forms 2.8.9 Ninjaforms Ninja Forms 2.8.10 Ninjaforms Ninja Forms 2.8.11 Ninjaforms Ninja Forms 2.8.12 Ninjaforms Ninja Forms 2.8.13 Ninjaforms Ninja Forms 2.9 Ninjaforms Ninja Forms 2.9.1 Ninjaforms Ninja Forms 2.9.2 Ninjaforms Ninja Forms 2.9.3 Ninjaforms Ninja Forms 2.9.4 Ninjaforms Ninja Forms 2.9.5 Ninjaforms Ninja Forms 2.9.6 Ninjaforms Ninja Forms 2.9.7 Ninjaforms Ninja Forms 2.9.8 Ninjaforms Ninja Forms 2.9.9 Ninjaforms Ninja Forms 2.9.10 Ninjaforms Ninja Forms 2.9.11 Ninjaforms Ninja Forms 2.9.12 Ninjaforms Ninja Forms 2.9.13 Ninjaforms Ninja Forms 2.9.14 Ninjaforms Ninja Forms 2.9.15 Ninjaforms Ninja Forms 2.9.16 Ninjaforms Ninja Forms 2.9.17 Ninjaforms Ninja Forms 2.9.18 Ninjaforms Ninja Forms 2.9.19 Ninjaforms Ninja Forms 2.9.20 Ninjaforms Ninja Forms 2.9.21 Ninjaforms Ninja Forms 2.9.22 Ninjaforms Ninja Forms 2.9.23 Ninjaforms Ninja Forms 2.9.24 Ninjaforms Ninja Forms 2.9.25 Ninjaforms Ninja Forms 2.9.26 Ninjaforms Ninja Forms 2.9.27 Ninjaforms Ninja Forms 2.9.28 Ninjaforms Ninja Forms 2.9.29 Ninjaforms Ninja Forms 2.9.30 Ninjaforms Ninja Forms 2.9.31 Ninjaforms Ninja Forms 2.9.32 Ninjaforms Ninja Forms 2.9.33 Ninjaforms Ninja Forms 2.9.34 Ninjaforms Ninja Forms 2.9.35 Ninjaforms Ninja Forms 2.9.36 Ninjaforms Ninja Forms 2.9.37 Ninjaforms Ninja Forms 2.9.38 Ninjaforms Ninja Forms 2.9.39 Ninjaforms Ninja Forms 2.9.40 Ninjaforms Ninja Forms 2.9.41 Ninjaforms Ninja Forms 2.9.42 Ninjaforms Ninja Forms 2.9.43 Ninjaforms Ninja Forms 2.9.44 Ninjaforms Ninja Forms 2.9.45 Ninjaforms Ninja Forms 2.9.46 Ninjaforms Ninja Forms 2.9.47 Ninjaforms Ninja Forms 2.9.48 Ninjaforms Ninja Forms 2.9.49 Ninjaforms Ninja Forms 2.9.50 Ninjaforms Ninja Forms 2.9.51 Ninjaforms Ninja Forms 2.9.52 Ninjaforms Ninja Forms 2.9.53 Ninjaforms Ninja Forms 2.9.54 Ninjaforms Ninja Forms 2.9.55 Ninjaforms Ninja Forms 2.9.55.1 Ninjaforms Ninja Forms 2.9.55.2 Ninjaforms Ninja Forms 2.9.56 Ninjaforms Ninja Forms 2.9.56.1 Ninjaforms Ninja Forms 2.9.56.2 Ninjaforms Ninja Forms 2.9.57 Ninjaforms Ninja Forms 2.9.58 Ninjaforms Ninja Forms 3.0 Ninjaforms Ninja Forms 3.0.1 Ninjaforms Ninja Forms 3.0.2 Ninjaforms Ninja Forms 3.0.3 Ninjaforms Ninja Forms 3.0.4 Ninjaforms Ninja Forms 3.0.5 Ninjaforms Ninja Forms 3.0.6 Ninjaforms Ninja Forms 3.0.7 Ninjaforms Ninja Forms 3.0.8 Ninjaforms Ninja Forms 3.0.9 Ninjaforms Ninja Forms 3.0.10 Ninjaforms Ninja Forms 3.0.11 Ninjaforms Ninja Forms 3.0.12 Ninjaforms Ninja Forms 3.0.13 Ninjaforms Ninja Forms 3.0.14 Ninjaforms Ninja Forms 3.0.15 Ninjaforms Ninja Forms 3.0.16 Ninjaforms Ninja Forms 3.0.17 Ninjaforms Ninja Forms 3.0.18 Ninjaforms Ninja Forms 3.0.19 Ninjaforms Ninja Forms 3.0.20 Ninjaforms Ninja Forms 3.0.21 Ninjaforms Ninja Forms 3.0.22 Ninjaforms Ninja Forms 3.0.23 Ninjaforms Ninja Forms 3.0.24 Ninjaforms Ninja Forms 3.0.25 Ninjaforms Ninja Forms 3.0.26 Ninjaforms Ninja Forms 3.0.27 Ninjaforms Ninja Forms 3.0.28 Ninjaforms Ninja Forms 3.0.29 Ninjaforms Ninja Forms 3.0.30 Ninjaforms Ninja Forms 3.0.31 Ninjaforms Ninja Forms 3.0.32 Ninjaforms Ninja Forms 3.0.33 Ninjaforms Ninja Forms 3.0.34 Ninjaforms Ninja Forms 3.0.34.1 Ninjaforms Ninja Forms 3.1 Ninjaforms Ninja Forms 3.1.1 Ninjaforms Ninja Forms 3.1.2 Ninjaforms Ninja Forms 3.1.3 Ninjaforms Ninja Forms 3.1.4 Ninjaforms Ninja Forms 3.1.5 Ninjaforms Ninja Forms 3.1.6 Ninjaforms Ninja Forms 3.1.7 Ninjaforms Ninja Forms 3.1.8 Ninjaforms Ninja Forms 3.1.9 Ninjaforms Ninja Forms 3.2 Ninjaforms Ninja Forms 3.2.1 Ninjaforms Ninja Forms 3.2.2 Ninjaforms Ninja Forms 3.2.3 Ninjaforms Ninja Forms 3.2.4 Ninjaforms Ninja Forms 3.2.5 Ninjaforms Ninja Forms 3.2.6 Ninjaforms Ninja Forms 3.2.7 Ninjaforms Ninja Forms 3.2.8 Ninjaforms Ninja Forms 3.2.9 Ninjaforms Ninja Forms 3.2.10 Ninjaforms Ninja Forms 3.2.11 Ninjaforms Ninja Forms 3.2.12 Ninjaforms Ninja Forms 3.2.13 Ninjaforms Ninja Forms 3.2.14 Ninjaforms Ninja Forms 3.2.15 Ninjaforms Ninja Forms 3.2.16 Ninjaforms Ninja Forms 3.2.17 Ninjaforms Ninja Forms 3.2.18 Ninjaforms Ninja Forms 3.2.19 Ninjaforms Ninja Forms 3.2.20 Ninjaforms Ninja Forms 3.2.21 Ninjaforms Ninja Forms 3.2.22 Ninjaforms Ninja Forms 3.2.23 Ninjaforms Ninja Forms 3.2.24 Ninjaforms Ninja Forms 3.2.25 Ninjaforms Ninja Forms 3.2.26 Ninjaforms Ninja Forms 3.2.27 Ninjaforms Ninja Forms 3.3.0 Ninjaforms Ninja Forms 3.3.1 Ninjaforms Ninja Forms 3.3.2 Ninjaforms Ninja Forms 3.3.3 Ninjaforms Ninja Forms 3.3.4 Ninjaforms Ninja Forms 3.3.5 Ninjaforms Ninja Forms 3.3.6 Ninjaforms Ninja Forms 3.3.7 Ninjaforms Ninja Forms 3.3.8 Ninjaforms Ninja Forms 3.3.9 Ninjaforms Ninja Forms 3.3.10 Ninjaforms Ninja Forms 3.3.11 Ninjaforms Ninja Forms 3.3.12 Ninjaforms Ninja Forms 3.3.13 Ninjaforms Ninja Forms 3.3.14	222

Common Weakness Enumeration (CWE)

CWE-1236 - Improper Neutralization of Formula Elements in a CSV File

Exploit-Db

id	EDB-ID:45234

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

Exploit-Db

References