CVE-2022-23868

RuoYi v4.7.2 contains a CSV injection vulnerability through ruoyi-admin when a victim opens .xlsx log file.
References
Link Resource
https://gitee.com/y_project/RuoYi/issues/I4RBBD Exploit Issue Tracking
Configurations

Configuration 1

cpe:2.3:a:ruoyi:ruoyi:4.7.2:*:*:*:*:*:*:*

Information

Published : 2022-03-30 11:15

Updated : 2022-04-04 07:47


NVD link : CVE-2022-23868

Mitre link : CVE-2022-23868

Products Affected
No products.
CWE
CWE-1236

Improper Neutralization of Formula Elements in a CSV File