Description CSV Injection was discovered in ProjectSend before r1053, affecting victims who import the data into Microsoft Excel. Remediation References CVE-2018-7201 Related Vulnerabilities WordPress Plugin Easy Gallery Slideshow Cross-Site Scripting (1.1) phpList Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-13827) WordPress Plugin WooCommerce Admin Security Bypass (2.6.3) Jenkins Missing Authorization Vulnerability (CVE-2017-1000400) WordPress Plugin WordPress Robots.txt optimization (+ XML Sitemap)-Website traffic, SEO & ranking Booster Security Bypass (1.4.3) Severity High Classification CVE-2018-7201 CWE-1236 Tags Missing Update Known Vulnerabilities