Critical severity9.8NVD Advisory· Published Jan 27, 2026· Updated Apr 15, 2026
CVE-2021-47901
CVE-2021-47901
Description
Dirsearch 0.4.1 contains a CSV injection vulnerability when using the --csv-report flag that allows attackers to inject formulas through redirected endpoints. Attackers can craft malicious server redirects with comma-separated paths containing Excel formulas to manipulate the generated CSV report.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: =0.4.1
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.