Vulnerabilities > Cirt NET

DATE CVE VULNERABILITY TITLE RISK
2018-06-01 CVE-2018-11652 Improper Neutralization of Formula Elements in a CSV File vulnerability in Cirt.Net Nikto 2.1.6
CSV Injection vulnerability in Nikto 2.1.6 and earlier allows remote attackers to inject arbitrary OS commands via the Server field in an HTTP response header, which is directly injected into a CSV report.
network
low complexity
cirt-net CWE-1236
critical
9.8