CVE-2018-10504

The WebDorado "Form Maker by WD" plugin before 1.12.24 for WordPress allows CSV injection.
References
Link Resource
https://wordpress.org/plugins/form-maker/#developers Third Party Advisory
https://www.exploit-db.com/exploits/44559/ Exploit Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:web-dorado:form_maker:*:*:*:*:*:wordpress:*:*

Information

Published : 2018-04-27 04:29

Updated : 2020-08-24 05:37


NVD link : CVE-2018-10504

Mitre link : CVE-2018-10504

Products Affected
No products.
CWE
CWE-1236

Improper Neutralization of Formula Elements in a CSV File