Security Advisory

CVE-2020-22275

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-11-04 16:59:58

Last updated 2024-08-04 14:51:10

Assigner mitre

State PUBLISHED

Description

Easy Registration Forms (ER Forms) Wordpress Plugin 2.0.6 allows an attacker to submit an entry with malicious CSV commands. After that, when the system administrator generates CSV output from the forms information, there is no check on this inputs and the codes are executable.

← Browse all CVEs View on cve.org ↗