Description CSV Injection was discovered in ProjectSend before r1053, affecting victims who import the data into Microsoft Excel. Remediation References CVE-2018-7201 Related Vulnerabilities WordPress Plugin W4 Post List Cross-Site Scripting (2.4.4) Internet Information Services Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2002-1717) WordPress Plugin All-in-One WP Migration Security Bypass (7.14) Oracle HTTP Server Out-of-bounds Write Vulnerability (CVE-2019-5482) WordPress Plugin Viral Quiz Maker-OnionBuzz SQL Injection (1.2.6) Severity High Classification CVE-2018-7201 CWE-1236 Tags Missing Update Known Vulnerabilities