mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-29 09:41:05 +00:00
916 B
916 B
CVE-2022-0142
Description
The Visual Form Builder WordPress plugin before 3.0.8 is vulnerable to CSV injection allowing a user with low level or no privileges to inject a command that will be included in the exported CSV file, leading to possible code execution.
POC
Reference
- https://wpscan.com/vulnerability/03210390-2054-40c0-9508-39d168087878
- https://wpscan.com/vulnerability/03210390-2054-40c0-9508-39d168087878
Github
No PoCs found on GitHub currently.