F090. Code injection (CSV)

Description

It is possible to inject formulas into fields that are later exported as part of CSV files and can be interpreted by Excel.

Rules

  1. R173. Discard unsafe inputs

OWASP logo

Corporate member of The OWASP Foundation

Clutch Review

Copyright © 2021 Fluid Attacks, We hack your software. All rights reserved.

Service status - Terms of Use - Privacy Policy - Cookie Policy