CVE-2019-13144

myTinyTodo 1.3.3 through 1.4.3 allows CSV Injection. This is fixed in 1.5.
References
Link Resource
https://www.mytinytodo.net/history.php Vendor Advisory
Configurations

Configuration 1

cpe:2.3:a:mytinytodo:mytinytodo:*:*:*:*:*:*:*:*

Information

Published : 2019-07-05 01:15

Updated : 2020-08-24 05:37


NVD link : CVE-2019-13144

Mitre link : CVE-2019-13144

Products Affected
No products.
CWE
CWE-1236

Improper Neutralization of Formula Elements in a CSV File