Description
The product saves user-provided information into a Comma-Separated Value (CSV) file, but it does not neutralize or incorrectly neutralizes special elements that could be interpreted as a command when the file is opened by a spreadsheet product.
CVE vulnerabilities with CWE-1236 (341)
9.8
CVSS
CRITICAL
CVE-2026-31049
pub. 2026-04-14
9.8
CVSS
CRITICAL
CVE-2025-56267
pub. 2025-09-08
9.8
CVSS
CRITICAL
CVE-2023-47295
pub. 2025-06-23
9.8
CVSS
CRITICAL
CVE-2024-55532
pub. 2025-03-03
9.8
CVSS
CRITICAL
CVE-2023-46400
pub. 2025-01-23
9.8
CVSS
CRITICAL
CVE-2023-46401
pub. 2025-01-23
9.8
CVSS
CRITICAL
CVE-2024-29375
pub. 2024-04-04
9.8
CVSS
CRITICAL
CVE-2023-51763
pub. 2023-12-24
9.8
CVSS
CRITICAL
CVE-2020-10131
pub. 2023-09-06
9.8
CVSS
CRITICAL
CVE-2023-4006
pub. 2023-07-31
9.8
CVSS
CRITICAL
CVE-2022-3574
pub. 2022-11-14
9.8
CVSS
CRITICAL
CVE-2022-3463
pub. 2022-11-07
9.8
CVSS
CRITICAL
CVE-2022-22425
pub. 2022-11-03
9.8
CVSS
CRITICAL
CVE-2022-3393
pub. 2022-10-25
9.8
CVSS
CRITICAL
CVE-2022-28481
pub. 2022-05-01
9.8
CVSS
CRITICAL
CVE-2022-0142
pub. 2022-04-12
9.8
CVSS
CRITICAL
CVE-2022-26249
pub. 2022-03-24
9.8
CVSS
CRITICAL
CVE-2021-38180
pub. 2021-10-12
9.8
CVSS
CRITICAL
CVE-2021-3188
pub. 2021-01-26
9.8
CVSS
CRITICAL
CVE-2020-22274
pub. 2020-11-04
Showing 20 of 341 vulnerabilities