CVE-2022-3605

The WP CSV Exporter WordPress plugin before 1.3.7 does not properly escape the fields when exporting data as CSV, leading to a CSV injection vulnerability.
References
Configurations

Configuration 1

cpe:2.3:a:wp_csv_exporter_project:wp_csv_exporter:*:*:*:*:*:wordpress:*:*

Information

Published : 2022-12-12 06:15

Updated : 2022-12-15 05:58


NVD link : CVE-2022-3605

Mitre link : CVE-2022-3605

Products Affected
No products.
CWE
CWE-1236

Improper Neutralization of Formula Elements in a CSV File