In Mahara before 20.04.5, 20.10.3,... CVE-2021-40848

6.8 AV AC AU C I A
发布: 2021-11-03
修订: 2024-11-21

In Mahara before 20.04.5, 20.10.3, 21.04.2, and 21.10.0, exported CSV files could contain characters that a spreadsheet program could interpret as a command, leading to execution of a malicious string locally on a device, aka CSV injection.

0%

漏洞利用/PoC

暂无可用Exp或PoC

受影响的平台与产品

当前有5条受影响产品信息