CVE-2020-13826

Publication date

2020-08-19 19:39:34

Family

mitre

State

PUBLISHED

Description

A CSV injection (aka Excel Macro Injection or Formula Injection) issue in i-doit 1.14.2 allows an attacker to execute arbitrary commands via a Title parameter that is mishandled in a CSV export.