Vulnerabilities

Report: Breaking: CVE-2026-9673 - Json-2-Csv CSV Injection

2026-05-28 0 views admin

CVE ID :CVE-2026-9673 Published : May 28, 2026, 6:16 a.m. | 1 hour, 39 minutes ago Description :Versions of the package json-2-csv from 3.15.0 and before 5.5.11 are vulnerable to CSV Injection via the preventCsvInjection option which can be bypassed. An attacker can inject formulas into CSV files, which execute when the files are opened in spreadsheet applications. Severity: 6.8 | MEDIUM Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

CVE ID

CVE-2026-9673

Severity

MEDIUM

Published

May 28, 2026

🏷️ Tags

reportbreakinginjectionpublishedminutesdescriptionversionspackagecvecve-2026-9673

InfinitSec - Latest Cybersecurity, Technology & Gaming News

Report: Breaking: CVE-2026-9673 - Json-2-Csv CSV Injection

CVE Details

🏷️ Tags

More from Vulnerabilities

Report: CVE-2026-7533 - Easy Digital Downloads <= 3.6.7 - cross-site request forgery to payment account h

Report: CVE-2026-9803 - Keycloak: keycloak: denial of service via malformed authorization header

Report: CVE-2026-9802 - Keycloak: keycloak: unauthorized account access via replayed refresh tokens after

Report: CVE-2026-9801 - Keycloak: keycloak: denial of service via malformed ldap password policy response

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting