CVE-2022-44830

Sourcecodester Event Registration App v1.0 was discovered to contain multiple CSV injection vulnerabilities via the First Name, Contact and Remarks fields. These vulnerabilities allow attackers to execute arbitrary code via a crafted excel file.
References
Link Resource
https://github.com/RashidKhanPathan/CVE-2022-44830 Exploit Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:event_registration_application_project:event_registration_application:1.0:*:*:*:*:*:*:*

Information

Published : 2022-11-21 06:15

Updated : 2022-11-23 03:01


NVD link : CVE-2022-44830

Mitre link : CVE-2022-44830

Products Affected
No products.
CWE
CWE-1236

Improper Neutralization of Formula Elements in a CSV File