phpMyFAQ Improper Neutralization of Formula Elements in a CSV File Vulnerability - CVE-2018-16651 - Vulnerability Database

phpMyFAQ Improper Neutralization of Formula Elements in a CSV File Vulnerability - CVE-2018-16651

High

Reference: CVE-2018-16651

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2018-16651

Title: phpMyFAQ Improper Neutralization of Formula Elements in a CSV File Vulnerability

Overview:

The admin backend in phpMyFAQ before 2.9.11 allows CSV injection in reports.