CVE-2021-47901
EUVD-2021-3474727.01.2026, 16:16
Dirsearch 0.4.1 contains a CSV injection vulnerability when using the --csv-report flag that allows attackers to inject formulas through redirected endpoints. Attackers can craft malicious server redirects with comma-separated paths containing Excel formulas to manipulate the generated CSV report.Enginsight
Awaiting analysis
This vulnerability is currently awaiting analysis.