CSV Injection (aka Excel Macro Injection or Formula Injection) exists in the export feature in Workday through 32 via a value (provided by a low-privileged user in a contact form field) that is mishandled in a CSV export.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2019-06-06T13:27:44

Updated: 2024-08-04T23:10:30.811Z

Reserved: 2019-05-15T00:00:00

Link: CVE-2019-12134

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2019-06-06T14:29:00.593

Modified: 2024-11-21T04:22:17.263

Link: CVE-2019-12134

cve-icon Redhat

No data.