Full title: KeystoneJS 4.0.0-beta.5 Unauthenticated CSV Injection Vulnerability 
Category: web applications
Platform: jsp
KeystoneJS version 4.0.0-beta.5 suffers from an unauthenticated CSV injection vulnerability in admin/server/api/download.js and lib/list/getCSVData.js

# 0day.today @ http://0day.today/