{"vulnerability": "cve-2021-40848", "sightings": [{"uuid": "12d5124a-5612-4cc8-a9a6-d199204629d3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-40848", "type": "seen", "source": "https://t.me/cibsecurity/31708", "content": "\u203c CVE-2021-40848 \u203c\n\nIn Mahara before 20.04.5, 20.10.3, 21.04.2, and 21.10.0, exported CSV files could contain characters that a spreadsheet program could interpret as a command, leading to execution of a malicious string locally on a device, aka CSV injection.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-03T13:23:32.000000Z"}]}