Name of the Vulnerable Software and Affected Versions CMS (affected versions not specified)

Description The issue concerns the CSV export feature of the CMS, where the output can contain macros and scripts. If these are imported into software like Microsoft Excel without proper sanitization, they may be executed. To mitigate this, the CMS will prepend potentially executable cell values exported from CSV with a literal tab character.

Recommendations For the CMS, consider updating the CSV export feature to prepend all potentially executable cell values with a literal tab character to prevent execution of macros and scripts when imported into other software.