Subscribe via feed.

KeystoneJS 4.0.0-beta.5 Unauthenticated CSV Injection

Posted by deepcore on October 26, 2017 – 4:30 pm

KeystoneJS version 4.0.0-beta.5 suffers from an unauthenticated CSV injection vulnerability in admin/server/api/download.js and lib/list/getCSVData.js.


This post is under “exploit” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.


« »