https://pwnwiki.com/index.php?action=history&feed=atom&title=Kimai_1.14_-_CSV%E6%B3%A8%E5%85%A5%E6%BC%8F%E6%B4%9EKimai 1.14 - CSV注入漏洞 - Revision history2026-04-10T12:03:37ZRevision history for this page on the wikiMediaWiki 1.35.1https://pwnwiki.com/index.php?title=Kimai_1.14_-_CSV%E6%B3%A8%E5%85%A5%E6%BC%8F%E6%B4%9E&diff=1905&oldid=prevPwnwiki: Created page with "==EXP== <pre> # Exploit Title: Kimai 1.14 - CSV Injection # Date: 26/04/2021 # Exploit Author: Mohammed Aloraimi # Vendor Homepage: https://www.kimai.org/ # Software Link: htt..."2021-04-27T11:42:35Z<p>Created page with "==EXP== <pre> # Exploit Title: Kimai 1.14 - CSV Injection # Date: 26/04/2021 # Exploit Author: Mohammed Aloraimi # Vendor Homepage: https://www.kimai.org/ # Software Link: htt..."</p>
<p><b>New page</b></p><div>==EXP==<br />
<pre><br />
# Exploit Title: Kimai 1.14 - CSV Injection<br />
# Date: 26/04/2021<br />
# Exploit Author: Mohammed Aloraimi<br />
# Vendor Homepage: https://www.kimai.org/<br />
# Software Link: https://github.com/kevinpapst/kimai2<br />
# Version: 1.14 <https://github.com/kevinpapst/kimai2/releases/tag/1.14><br />
# Payload: @SUM(1+9)*cmd|' /C calc'!A0<br />
# Tested on: Win10x64<br />
# Proof Of Concept:<br />
CSV Injection (aka Excel Macro Injection or Formula Injection) exists in<br />
creating new timesheet in Kimai. By filling the Description field with malicious<br />
payload, it will be mistreated while exporting to a CSV file.<br />
<br />
To exploit this vulnerability:<br />
1- Login as user.<br />
2- Create new timesheet.<br />
3- Fill the description with the malicious payload.<br />
4- Save the timesheet.<br />
5- Export it via CSV.<br />
6- Open the CSV file, allow all popups and our payload is executed(calculator is opened).<br />
<br />
</pre></div>Pwnwiki