CVE-2022-28481

CVE-2022-28481

EPSS 1.6%

CSV-Safe gem < 3.0.0 doesn't filter out special characters which could trigger CSV Injection.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://github.com/zvory/csv-safe https://github.com/zvory/csv-safe/issues/7 https://github.com/zvory/csv-safe/pull/8