EIP-2026-109005

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-109005. PoCs published by Mohammed Aloraimi.

AI-analyzed exploit summary This exploit demonstrates a CSV injection vulnerability in Kimai 1.14, where a malicious payload in the timesheet description field is executed when exported to CSV and opened in Excel. The payload triggers command execution (e.g., opening a calculator) via Excel's formula injection.

Description

Kimai 1.14 - CSV Injection

Exploits (1)

exploitdb WORKING POC

by Mohammed Aloraimi · textwebappsphp

https://www.exploit-db.com/exploits/49805

View Code ZIP pw:eip

This exploit demonstrates a CSV injection vulnerability in Kimai 1.14, where a malicious payload in the timesheet description field is executed when exported to CSV and opened in Excel. The payload triggers command execution (e.g., opening a calculator) via Excel's formula injection.

Classification

Working Poc 90%

Attack Type

Other

Complexity

Trivial

Reliability

Reliable

Target: Kimai 1.14

Auth required

Prerequisites: User authentication · Ability to create a timesheet · Victim opening the exported CSV in Excel

MITRE ATT&CK

T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Kimai 1.14 - CSV Injection

Exploitation Summary

Description

Exploits (1)

Details