Description CSV Injection was discovered in ProjectSend before r1053, affecting victims who import the data into Microsoft Excel. Remediation References CVE-2018-7201 Related Vulnerabilities Joomla Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-2890) WordPress Plugin Woo Import Export Arbitrary File Deletion (1.0) WordPress Plugin WP-Spreadshirt-Gallery Cross-Site Scripting (1.3) Drupal Core 7.x Cross-Site Scripting (7.0 - 7.65) SharePoint CVE-2020-17061 Vulnerability (CVE-2020-17061) Severity High Classification CVE-2018-7201 CWE-1236 Tags Missing Update Known Vulnerabilities