Vulnerabilities > I Doit > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-09-12 | CVE-2024-8749 | SQL Injection vulnerability in I-Doit 28 SQL injection vulnerability in idoit pro version 28. | 7.5 |
| 2020-08-20 | CVE-2020-13826 | Improper Neutralization of Formula Elements in a CSV File vulnerability in I-Doit A CSV injection (aka Excel Macro Injection or Formula Injection) issue in i-doit 1.14.2 allows an attacker to execute arbitrary commands via a Title parameter that is mishandled in a CSV export. | 8.8 |
| 2018-12-15 | CVE-2018-20159 | Improper Input Validation vulnerability in I-Doit 1.11.2 i-doit open 1.11.2 allows Remote Code Execution because ZIP archives are mishandled. | 7.2 |