What is the CVSS score of CVE-2020-36941?

CVE-2020-36941 has a CVSS 3.1 base score of 9.8 (Critical). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H. EPSS exploitation probability: 0.1%.

Which versions of Knockpy are affected by CVE-2020-36941?

CVE-2020-36941 is a critical CSV injection vulnerability in Knockpy 4.1.1 that allows attackers to embed malicious formulas into exported reports, potentially leading to data theft, system…

Is there a public PoC exploit available for CVE-2020-36941?

Yes, a public proof-of-concept exploit is available for CVE-2020-36941. Prioritise patching immediately. EPSS: 0.1%.

How to fix or mitigate CVE-2020-36941?

Within 24 hours: Immediately disable Knockpy 4.1.1 or restrict access to trusted internal networks only; audit recent CSV exports for suspicious formulas and notify affected teams. Within 7 days: Implement input validation and output encoding controls at the application layer; conduct forensic analysis of Knockpy logs for signs of exploitation. Within 30 days: Evaluate alternative DNS reconnaissance tools with active security maintenance; establish a process to identify and remediate unsupported software dependencies across the infrastructure.

Knockpy CVE-2020-36941

CRITICAL

Improper Neutralization of Formula Elements in a CSV File (CWE-1236)

2026-01-27 disclosure@vulncheck.com

Code Injection Knockpy

9.8

CVSS 3.1 · NVD

Severity by source

NVD PRIMARY

9.8 CRITICAL

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

PoC Detected

Mar 24, 2026 - 21:24 vuln.today

Public exploit code

Analysis Generated

Mar 12, 2026 - 21:55 vuln.today

CVE Published

Jan 27, 2026 - 16:16 nvd

CRITICAL 9.8

DescriptionCVE.org

Knockpy 4.1.1 contains a CSV injection vulnerability that allows attackers to inject malicious formulas into CSV reports through unfiltered server headers. Attackers can manipulate server response headers to include spreadsheet formulas that will execute when the CSV is opened in spreadsheet applications.

AnalysisAI

Knockpy 4.1.1 has CSV injection in subdomain scan exports.

Technical ContextAI

CWE-1236.

RemediationAI

Update Knockpy. Sanitize CSV exports.

CVE-2020-36941 vulnerability details – vuln.today

Back

Knockpy CVE-2020-36941

Severity by source

CVSS VectorNVD

Lifecycle Timeline

DescriptionCVE.org

AnalysisAI

Technical ContextAI

RemediationAI

Share

External POC / Exploit Code