Vulnerabilities > Improper Neutralization of Formula Elements in a CSV File
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-09-29 | CVE-2022-40472 | Improper Neutralization of Formula Elements in a CSV File vulnerability in Zktec Zkbio Time 8.0.7 ZKTeco Xiamen Information Technology ZKBio Time 8.0.7 Build: 20220721.14829 was discovered to contain a CSV injection vulnerability. | 8.0 |
| 2022-09-23 | CVE-2022-38061 | Improper Neutralization of Formula Elements in a CSV File vulnerability in Apasionados Export Post Info Authenticated (author+) CSV Injection vulnerability in Export Post Info plugin <= 1.2.0 at WordPress. | 5.7 |
| 2022-09-16 | CVE-2022-38844 | Improper Neutralization of Formula Elements in a CSV File vulnerability in Espocrm 7.1.8 CSV Injection in Create Contacts in EspoCRM 7.1.8 allows remote authenticated users to run system commands via creating contacts with payloads capable of executing system commands. | 8.0 |
| 2022-09-06 | CVE-2022-2429 | Improper Neutralization of Formula Elements in a CSV File vulnerability in Ultimatesmsnotifications Ultimate SMS Notifications for Woocommerce 1.4.1 The Ultimate SMS Notifications for WooCommerce plugin for WordPress is vulnerable to CSV Injection in versions up to, and including, 1.4.1 via the 'Export Utility' functionality. | 8.0 |
| 2022-09-06 | CVE-2022-3026 | Improper Neutralization of Formula Elements in a CSV File vulnerability in Wp-Users-Exporter Project Wp-Users-Exporter 1.4.2 The WP Users Exporter plugin for WordPress is vulnerable to CSV Injection in versions up to, and including, 1.4.2 via the 'Export Users' functionality. | 8.8 |
| 2022-06-09 | CVE-2022-2027 | Improper Neutralization of Formula Elements in a CSV File vulnerability in Kromit Titra Improper Neutralization of Formula Elements in a CSV File in GitHub repository kromitgmbh/titra prior to 0.77.0. | 8.0 |
| 2022-06-07 | CVE-2020-36531 | Improper Neutralization of Formula Elements in a CSV File vulnerability in IBM Sevone Network Performance Management A vulnerability, which was classified as critical, has been found in SevOne Network Management System up to 5.7.2.22. | 8.8 |
| 2022-06-02 | CVE-2022-26867 | Improper Neutralization of Formula Elements in a CSV File vulnerability in Dell Powerstoreos PowerStore SW v2.1.1.0 supports the option to export data to either a CSV or an XLSX file. | 8.0 |
| 2022-05-01 | CVE-2022-28481 | Improper Neutralization of Formula Elements in a CSV File vulnerability in Csv-Safe Project Csv-Safe CSV-Safe gem < 3.0.0 doesn't filter out special characters which could trigger CSV Injection. | 9.8 |
| 2022-05-01 | CVE-2022-1544 | Improper Neutralization of Formula Elements in a CSV File vulnerability in Luya Yii-Helpers Formula Injection/CSV Injection due to Improper Neutralization of Formula Elements in CSV File in GitHub repository luyadev/yii-helpers prior to 1.2.1. | 7.8 |