Andrey Skuratov

**Name of the Vulnerable Software and Affected Versions** InterMind iMind Server versions through 3.13.65 **Description** The issue exists in the csv export functionality, allowing for CSV Injection. **Recommendations** For versions through 3.13.65, update to a version that contains a fix for this issue, as using the csv export functionality can lead to CSV Injection.

**Name of the Vulnerable Software and Affected Versions** Kunena extension versions prior to 5.1.14 for Joomla! **Description** The issue allows for XSS via BBCode, which can be exploited to execute malicious scripts. **Recommendations** For versions prior to 5.1.14, update to version 5.1.14 or later to resolve the issue.