CVE-2020-13826
A CSV injection (aka Excel Macro Injection or Formula Injection) issue in i-doit 1.14.2 allows an attacker to execute arbitrary commands via a Title parameter that is mishandled in a CSV export.
Date published : 2020-08-19
https://www.wizlynxgroup.com/security-research-advisories/vuln/WLX-2020-006