CSV Injection via the CSV export feature
Unknown
Vulnerability Details
I've bypassed #111192 by using this string ";=cmd|' /C calc'!A0" without doublequotes. Steps to reproduce are as in #111192. Tested in excel 2003-2013
Actions
View on HackerOneReport Stats
- Report ID: 124223
- State: Closed
- Substate: resolved
- Upvotes: 3