CVE-2025-62417 | Bagisto up to 2.3.7 csv injection (GHSA-jqrp-58fv-w8cq)

October 16, 2025 Yanac

A vulnerability labeled as critical has been found in Bagisto up to 2.3.7. Affected by this vulnerability is an unknown functionality. Such manipulation leads to csv injection.

This vulnerability is documented as CVE-2025-62417. The attack can be executed remotely. There is not any exploit available.

The affected component should be upgraded.VulDB Recent EntriesRead More

CVE-2025-34255 | D-Link Nuclias Connect up to 1.3.1.4 Forgot Password data.exist observable response discrepancy
CVE-2025-11493 | ConnectWise Automate code download