Description
Open-AudIT before 2.2 has CSV Injection.
Exploits (1)
exploitdb
WRITEUP
by Sureshbabu Narvaneni · textwebappswindows
https://www.exploit-db.com/exploits/44511
References (2)
Core 2
Core References
Exploit, Third Party Advisory, VDB Entry exploit
x_refsource_exploit-db
https://www.exploit-db.com/exploits/44511/
Exploit, Third Party Advisory x_refsource_confirm
https://community.opmantek.com/display/OA/Errata+-+2.1+Security+Update%2C+April+2018
Scores
CVSS v3
6.8
EPSS
0.0232
EPSS Percentile
84.9%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:N/I:H/A:N
Details
CWE
CWE-1236
Status
published
Products (1)
open-audit/open-audit
< 2.1
Published
Apr 19, 2018
Tracked Since
Feb 18, 2026