Marmind Authorization Bypass
An Authorization Bypass vulnerability in the Marmind web application with version 220.127.116.11 allows users with lower privileges to gain control to files uploaded by administrative users. The accessed files were not visible by the low privileged users in the web GUI. The vulnerability was reported as CVE-2020-26506.
Marmind CSV Injection
A CSV Injection (also known as Formula Injection) vulnerability in the Marmind web application with version 18.104.22.168 allows malicious users to gain remote control of other computers. By providing formula code in the “Notes” functionality in the main screen, an attacker can inject a payload into the “Description” field under the “Insert To-Do” option. Other users might download this data, for example a CSV file, and execute the malicious commands on their computer by opening the file using a software such as Microsoft Excel. The attacker could gain remote access to the user’s PC. The vulnerability was reported as CVE-2020-26507.
Arxes Tolina CSV Injection
A CSV Injection vulnerability in the arxes-tolina web application with version 3.0.0 allows malicious users to gain remote control of other computers. By providing formula code in the “Firma” (company name), an attacker can create a new company with the name variable that contains malicious code.
Arxes Tolina User Disclosure via Application Function
A username disclosure vulnerability via the arxes-tolina web application allows authenticated users to see other users’ login usernames. By sending a HTTP Get Request to the API object the application discloses the usernames of those users that took part in the execution of this contract.
Wordpress CSV Injection
A CSV injection in the WordPress plugin “Admin Columns” with version 3.4.6 from Codepress allows malicious users to gain remote control of other computers. By choosing formula code as his first or last name, an attacker can create user with names that contain malicious code.
“vBSecurity” by DragonByte