Description CSV Injection was discovered in ProjectSend before r1053, affecting victims who import the data into Microsoft Excel. Remediation References CVE-2018-7201 Related Vulnerabilities WordPress Plugin Featured Content 'param' Parameter Cross-Site Scripting (0.0.1) Atlassian Jira Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2021-43953) PrestaShop Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-21628) Apache HTTP Server Numeric Errors Vulnerability (CVE-2011-3607) WordPress Plugin Check & Log Email Cross-Site Scripting (1.0.3) Severity High Classification CVE-2018-7201 CWE-1236 Tags Missing Update Known Vulnerabilities