Medium severity6.5NVD Advisory· Published Oct 23, 2025· Updated Apr 15, 2026
CVE-2025-60852
CVE-2025-60852
Description
A CSV Injection vulnerability existed in Instant Developer Foundation versions prior to 25.0.9600. Applications built with affected versions of the framework did not properly sanitize user-controlled input before including it in CSV exports. This issue could lead to code execution on the system where the exported CSV file is opened.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: < 25.0.9600
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.