CVE-2022-1202 Information

Description

The WP-CRM WordPress plugin through 1.2.1 does not validate and sanitise fields when exporting people to a CSV file leading to a CSV injection vulnerability.

Reference

https://wpscan.com/vulnerability/53c8190c-baef-4807-970b-f01ab440576a