CVE-2022-1544

Formula Injection/CSV Injection due to Improper Neutralization of Formula Elements in CSV File in GitHub repository luyadev/yii-helpers prior to 1.2.1. Successful exploitation can lead to impacts such as client-sided command injection, code execution, or remote ex-filtration of contained confidential data.
Configurations

Configuration 1

cpe:2.3:a:luya:yii-helpers:*:*:*:*:*:*:*:*

Information

Published : 2022-05-01 12:15

Updated : 2022-05-12 02:31


NVD link : CVE-2022-1544

Mitre link : CVE-2022-1544

Products Affected
No products.
CWE
CWE-1236

Improper Neutralization of Formula Elements in a CSV File