Vulnerability Description
An issue was discovered in Recon-ng before 4.9.5. Lack of validation in the modules/reporting/csv.py file allows CSV injection. More specifically, when a Twitter user possesses an Excel macro for a username, it will not be properly sanitized when exported to a CSV file. This can result in remote code execution for the attacker.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Recon-Ng Project | Recon-Ng | < 4.9.5 |
Related Weaknesses (CWE)
References
- https://bitbucket.org/LaNMaSteR53/recon-ng/commits/41e96fd58891439974fb0c920b349PatchThird Party Advisory
- https://bitbucket.org/LaNMaSteR53/recon-ng/issues/285/csv-injection-vulnerabilitThird Party Advisory
- https://bitbucket.org/LaNMaSteR53/recon-ng/commits/41e96fd58891439974fb0c920b349PatchThird Party Advisory
- https://bitbucket.org/LaNMaSteR53/recon-ng/issues/285/csv-injection-vulnerabilitThird Party Advisory
FAQ
What is CVE-2018-20752?
CVE-2018-20752 is a vulnerability with a CVSS score of 9.8 (CRITICAL). An issue was discovered in Recon-ng before 4.9.5. Lack of validation in the modules/reporting/csv.py file allows CSV injection. More specifically, when a Twitter user possesses an Excel macro for a us...
How severe is CVE-2018-20752?
CVE-2018-20752 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2018-20752?
Check the references section above for vendor advisories and patch information. Affected products include: Recon-Ng Project Recon-Ng.