Security Advisory

CVE-2023-53913

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-17 22:44:48

Last updated 2026-04-07 14:07:33

Assigner VulnCheck

State PUBLISHED

Description

Rukovoditel 3.3.1 contains a CSV injection vulnerability that allows authenticated users to inject malicious formulas into the firstname field. Attackers can craft payloads like =calc|a!z| to trigger code execution when an admin exports customer data as a CSV file.

← Browse all CVEs View on cve.org ↗