WhiteSource Vulnerability Database
What is a CVE vulnerability ID? What is a WS vulnerability ID?New vulnerability? Tell us about it!
We found results for “”
Date: January 10, 2022
OverviewIn NocoDB, versions 0.81.0 through 0.83.8 are affected by CSV Injection vulnerability (Formula Injection). A low privileged attacker can create a new table to inject payloads in the table rows. When an administrator accesses the User Management endpoint and exports the data as a CSV file and opens it, the payload gets executed.
DetailsNocoDB download as CSV functionality fails to sanitize user-controlled input before writing it to the downloaded CSV file which leads to a formula injection vulnerability.
PoC DetailsSign in to the NocoDB application and create a new table, using a lower privileged user like editor, create a new row on this table with value set to the formula injection payload shown below. Then click download as CSV which leads to the formula injection vulnerability be triggered.
Affected Environments0.81.0 through 0.83.8
PreventionUpdate to version 0.84.0 or later
Good to know:
|Attack Vector (AV):||Network|
|Attack Complexity (AC):||Low|
|Privileges Required (PR):||Low|
|User Interaction (UI):||Required|