CSV Injection vulnerability in Activity Log Team Activity Log <= 2.8.3 on WordPress.
References
Link | Resource |
---|---|
https://patchstack.com/database/vulnerability/aryo-activity-log/wordpress-activity-log-plugin-2-8-3-csv-injection-vulnerability?_s_id=cve | Third Party Advisory |
Configurations
History
26 Jul 2023, 08:15
Type | Values Removed | Values Added |
---|---|---|
Summary | CSV Injection vulnerability in Activity Log Team Activity Log <= 2.8.3 on WordPress. | |
References |
|
28 Jun 2023, 14:28
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-1236 |
09 Nov 2022, 14:04
Type | Values Removed | Values Added |
---|---|---|
First Time |
Activity Log Project
Activity Log Project activity Log |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 9.8 |
CPE | cpe:2.3:a:activity_log_project:activity_log:*:*:*:*:*:wordpress:*:* | |
References | (CONFIRM) https://wordpress.org/plugins/aryo-activity-log/#developers - Release Notes, Third Party Advisory | |
References | (CONFIRM) https://patchstack.com/database/vulnerability/aryo-activity-log/wordpress-activity-log-plugin-2-8-3-csv-injection-vulnerability?_s_id=cve - Third Party Advisory | |
CWE | CWE-74 |
08 Nov 2022, 19:25
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-11-08 19:15
Updated : 2023-12-10 14:35
NVD link : CVE-2022-27858
Mitre link : CVE-2022-27858
CVE.ORG link : CVE-2022-27858
JSON object : View
Products Affected
activity_log_project
- activity_log
CWE
CWE-1236
Improper Neutralization of Formula Elements in a CSV File