CVE-2022-44830

Description

Sourcecodester Event Registration App v1.0 was discovered to contain multiple CSV injection vulnerabilities via the First Name, Contact and Remarks fields. These vulnerabilities allow attackers to execute arbitrary code via a crafted excel file.

Related CPE's

a event_registration_application_project event_registration_application 1.0 *******

References

https://github.com/RashidKhanPathan/CVE-2022-44830

ExploitThird Party Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics

Created by Yello

About Severity.io