A CSV Injection vulnerablity exists in Kimai Kimai 2 prior to 1.14.1 via a description in a new timesheet.
{ "nvd_published_at": "2022-04-08T17:15:00Z", "github_reviewed_at": "2022-04-22T20:21:47Z", "severity": "HIGH", "github_reviewed": true, "cwe_ids": [ "CWE-1236" ] }