Back to directory
WRITEUP #5957

Server-Side Spreadsheet Injection – Formula Injection to Remote Code Execution

RCECSV injectionServer side spreadsheet injectionFormula injection
byJake Miller
Program
Google
Published
Jun 11, 2018
Added to HackDex
Sep 15, 2022
Read Full Writeuphttps://www.bishopfox.com/blog/2018/06/server-side-spreadsheet-injections/
RELATED WRITEUPS
Vulnerabilities in Open Source C2 Frameworks
RCEOS command injection
[2,500$ Bug Bounty Write-Up] Remote Code Execution (RCE) via unclaimed Node package
RCEDependency confusion
Attacking PowerShell CLIXML Deserialization
DeserializationInsecure deserialization
Zero-Click Calendar invite — Critical zero-click vulnerability chain in macOS
RCEArbitrary file write
We Spent $20 To Achieve RCE And Accidentally Became The Admins Of .MOBI
RCETLD hacking

Built with ❤️ by Shubham Rawat