Index: lams_common/src/java/org/lamsfoundation/lams/util/excel/ExcelUtil.java
===================================================================
diff -u -r719aba3a889834f41ba93af0c98a2a1235b63d5f -r5446ab8ac25d45a9d06b3ec8a8724a05546daa26
--- lams_common/src/java/org/lamsfoundation/lams/util/excel/ExcelUtil.java	(.../ExcelUtil.java)	(revision 719aba3a889834f41ba93af0c98a2a1235b63d5f)
+++ lams_common/src/java/org/lamsfoundation/lams/util/excel/ExcelUtil.java	(.../ExcelUtil.java)	(revision 5446ab8ac25d45a9d06b3ec8a8724a05546daa26)
@@ -273,7 +273,9 @@
 			break;
 		}
 	    }
-
+	    // prevent malicious formula injection
+	    sourceCellStyle.setQuotePrefixed(true);
+	    
 	    Cell cell = CellUtil.createCell(row, columnIndex, null, sourceCellStyle);
 
 	    Object excelCellValue = excelCell.getCellValue();