H3Llraiser

**Name of the Vulnerable Software and Affected Versions** InterMind iMind Server versions through 3.13.65 **Description** The issue exists in the csv export functionality, allowing for CSV Injection. **Recommendations** For versions through 3.13.65, update to a version that contains a fix for this issue, as using the csv export functionality can lead to CSV Injection.

**Name of the Vulnerable Software and Affected Versions** InterMind iMind Server versions through 3.13.65 **Description** The issue allows any user to hijack another user's session by sending a malicious file in the chat, due to a stored XSS vulnerability. **Recommendations** For versions through 3.13.65, update to a version that contains a fix for this issue to prevent session hijacking.