提交 #631473: elunez eladmin ≤ 2.7 CSV/XLSX Injection(CWE-1236)信息

标题elunez eladmin ≤ 2.7 CSV/XLSX Injection(CWE-1236)
描述In eladmin versions up to 2.7, 19 endpoints are vulnerable to CSV/XLSX injection, which can lead to sensitive information disclosure when malicious spreadsheet formulas are executed.
来源⚠️ https://github.com/elunez/eladmin/issues/886
用户
 ez-lbz (UID 87033)
提交2025-08-10 10時18分 (11 月前)
管理2025-08-20 13時07分 (10 days later)
状态已接受
VulDB条目320774 [elunez eladmin 直到 2.7 exportUser 权限提升]
积分15

上一步一览下一步

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!