Vulnerabilities > Contact Form 7 TO Database Extension Project

DATE CVE VULNERABILITY TITLE RISK
2018-04-04 CVE-2018-9035 Improper Neutralization of Formula Elements in a CSV File vulnerability in Contact-Form-7-To-Database-Extension Project Contact-Form-7-To-Database-Extension 2.10.30/2.10.31/2.10.32
CSV Injection vulnerability in ExportToCsvUtf8.php of the Contact Form 7 to Database Extension plugin 2.10.32 for WordPress allows remote attackers to inject spreadsheet formulas into CSV files via the contact form.
network
low complexity
contact-form-7-to-database-extension-project CWE-1236
critical
9.6