Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Investigate possible vuln in papaparse #81

Closed
MichalCz opened this issue May 15, 2020 · 1 comment
Closed

Investigate possible vuln in papaparse #81

MichalCz opened this issue May 15, 2020 · 1 comment
Assignees
@MichalCz
Labels
bug Notabug

Comments

@MichalCz
Copy link
Sponsor Member

Basics:

According to the report here mholt/PapaParse#793 there's a chance that someone could export a formula in the produced csv and use it as an attack on spreadsheets...

This sounds a bit crazy as:

  • what if someone actually wanted to output a formula in csv?
  • it isn't us who's under attack

Anyway Snyk seems to have marked this as a high level, so let's leave it hanging and revisit.

Let's watch this for now and see how the situation develops.
@MichalCz MichalCz self-assigned this May 15, 2020
@MichalCz
Copy link
Sponsor Member Author

Ok, that seems to be nothing...

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@MichalCz MichalCz

Labels
bug Notabug
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@MichalCz