Vulnerabilities > Contact Form 7 TO Database Extension Project > Contact Form 7 TO Database Extension > Medium

DATE CVE VULNERABILITY TITLE RISK
2018-04-04 CVE-2018-9035 Improper Neutralization of Formula Elements in a CSV File vulnerability in Contact-Form-7-To-Database-Extension Project Contact-Form-7-To-Database-Extension
CSV Injection vulnerability in ExportToCsvUtf8.php of the Contact Form 7 to Database Extension plugin 2.10.32 for WordPress allows remote attackers to inject spreadsheet formulas into CSV files via the contact form.
6.8