VYPR

Recon-ng

by Recon-ng

CVEs (1)

  • CVE-2018-20752CriFeb 4, 2019
    risk 0.64cvss 9.8epss 0.03

    An issue was discovered in Recon-ng before 4.9.5. Lack of validation in the modules/reporting/csv.py file allows CSV injection. More specifically, when a Twitter user possesses an Excel macro for a username, it will not be properly sanitized when exported to a CSV file. This can…