CVE-2019-11819

Alkacon OpenCMS v10.5.4 and before is affected by CSV (aka Excel Macro) Injection in the module New User (/opencms/system/workplace/admin/accounts/user_new.jsp) via the First Name or Last Name.
References
Configurations

Configuration 1

cpe:2.3:a:alkacon:opencms:*:*:*:*:*:*:*:*

Information

Published : 2019-05-08 04:29

Updated : 2020-08-24 05:37


NVD link : CVE-2019-11819

Mitre link : CVE-2019-11819

Products Affected
No products.
CWE
CWE-1236

Improper Neutralization of Formula Elements in a CSV File