EPSS
Percentile
40.5%
nocodb is vulnerable to CSV injection attacks. The vulnerability exists due to lack of sanitization in table rows which allows attackers to inject payload and execute in endpoint when administer opens the CSV file.
github.com/nocodb/nocodb/commit/079e3abe
github.com/nocodb/nocodb/issues/912
www.whitesourcesoftware.com/vulnerability-database/CVE-2022-22121