CVE-2023-46400

Name of the Vulnerable Software and Affected Versions KWHotel version 0.47

Description The issue concerns CSV Formula Injection in the add guest function. This allows for potential exploitation through crafted CSV formulas. No information is provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited.

Recommendations For KWHotel version 0.47, consider restricting access to the add guest function until a fix is available. As a temporary workaround, avoid using the add guest function with untrusted input to minimize the risk of exploitation.