RSS   Vulnerabilities for 'Kimai'   RSS

2022-04-08
 
CVE-2021-43515

CWE-1236
 

 
CSV Injection (aka Excel Macro Injection or Formula Injection) exists in creating new timesheet in Kimai. By filling the Description field with malicious payload, it will be mistreated while exporting to a CSV file.

 

 >>> Vendor: Kimai 3 Products
Kimai 2
Kimai2
Kimai


Copyright 2024, cxsecurity.com

 

Back to Top