Security Advisory

CVE-2020-22390

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-06-21 14:02:56

Last updated 2024-08-04 14:51:10

Assigner mitre

State PUBLISHED

Description

Akaunting <= 2.0.9 is vulnerable to CSV injection in the Item name field, export function. Attackers can inject arbitrary code into the name parameter and perform code execution when the crafted file is opened.

← Browse all CVEs View on cve.org ↗