CNNVD-202512-4296 Information

CNNVD ID

CNNVD-202512-4296

Related CVE

CVE-2018-25135

• CNNVD Published: 2025-12-24

Description (Chinese)

Anviz AIM CrossChex Standard是美国Anviz公司的一个考勤与门禁管理软件。 Anviz AIM CrossChex Standard 4.3.6.0版本存在安全漏洞，该漏洞源于用户导入字段可插入恶意公式，可能导致CSV注入攻击。

Description (English)

Anviz AIM CrossChex Standard is a United States company, Anviz, for attendance and door-to-door management. The security gap in version 4.3.6.0 of Anviz AIM CrossChex Standard stems from the fact that user-imported fields can be inserted into a malicious formula, which could lead to an attack by CSV.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

Anviz

Published

2025-12-24

Last Modified

2026-02-24

References

https://www.anviz.com https://www.exploit-db.com/exploits/45765 https://www.zeroscience.mk/en/vulnerabilities/ZSL-2018-5498.php