Open Mobile Menu

Blog

Filed In: InfoSec, Security Testing, Security

CSV Formula Injection

Ryan Borden

Written By: Ryan Borden

February 21, 2018

Views: 1491

A few years back I was testing an application which had CSV export functionality and I noticed something weird. When I clicked the export button the application submitted a request with the CSV data in the POST body.

Read more.