Vulnerabilities > Bestwebsoft > Post TO CSV > 1.3.8

DATE CVE VULNERABILITY TITLE RISK
2023-11-07 CVE-2023-36527 Improper Neutralization of Formula Elements in a CSV File vulnerability in Bestwebsoft Post to CSV
Improper Neutralization of Formula Elements in a CSV File vulnerability in BestWebSoft Post to CSV by BestWebSoft.This issue affects Post to CSV by BestWebSoft: from n/a through 1.4.0.
network
low complexity
bestwebsoft CWE-1236
8.8
8.8
2022-10-25 CVE-2022-3393 Improper Neutralization of Formula Elements in a CSV File vulnerability in Bestwebsoft Post to CSV
The Post to CSV by BestWebSoft WordPress plugin through 1.4.0 does not properly escape fields when exporting data as CSV, leading to a CSV injection
network
low complexity
bestwebsoft CWE-1236
critical
 9.8
9.8