To view the article, click here.

The ethical hacking platform Intigriti took a look back at the 10 best security write-ups of 2018. Security Associate Jake Miller's Server-side spreadsheet injections write-up discussing two server-side attack vectors based on CSV injection is #4 on their list. These vulnerabilities show the emerging class of client-side vulnerabilities that are manifesting as server-side vulnerabilities which can expect to see more of in the future.

For more details, check out Jake's full blog post Server-Side Spreadsheet Injection - Formula Injection to Remote Code Execution.