VYPR

CSV Injection In Instant Developer Foundation 25.0 Poc

by Valeriocassoni

Source repositories

CVEs (1)

  • CVE-2025-60852MedOct 23, 2025
    risk 0.42cvss 6.5epss 0.00

    A CSV Injection vulnerability existed in Instant Developer Foundation versions prior to 25.0.9600. Applications built with affected versions of the framework did not properly sanitize user-controlled input before including it in CSV exports. This issue could lead to code…