CVE-2020-10460
admin/include/operations.php (via admin/email-harvester.php) in Chadha PHPKB Standard Multi-Language 9 allows attackers to inject untrusted input inside CSV files via the POST parameter data.
Date published : 2020-03-12
http://antoniocannito.it/?p=137#csvinj
https://antoniocannito.it/phpkb1#csv-injection-cve-2020-10460