Security: PHPOffice/PhpSpreadsheet
Security
No security policy detected
This project has not set up a SECURITY.md file yet.
Report a vulnerability-
Cross-Site Scripting (XSS) vulnerability in custom propertiesGHSA-wv23-996v-q229 published
Jan 3, 2025 by oleibmanModerate -
Cross-Site Scripting (XSS) vulnerability of the hyperlink base in the HTML page headerGHSA-hwcp-2h35-p66w published
Jan 3, 2025 by oleibmanModerate -
Bypass XSS sanitizer using the javascript protocol and special charactersGHSA-q9jv-mm3r-j47r published
Jan 3, 2025 by oleibmanModerate -
Unauthorized Reflected XSS in Currency.php fileGHSA-j2xg-cjcx-4677 published
Jan 3, 2025 by oleibmanHigh -
Unauthorized Reflected XSS in the Accounting.php fileGHSA-c6fv-7vh8-2rhr published
Jan 3, 2025 by oleibmanHigh -
Unauthorized Reflected XSS in `Convert-Online.php` fileGHSA-x88g-h956-m5xg published
Jan 3, 2025 by oleibmanHigh -
Unauthorized Reflected XSS in the constructor of the Downloader classGHSA-jmpx-686v-c3wx published
Jan 3, 2025 by oleibmanHigh -
XXE in PHPSpreadsheet's XLSX readerGHSA-7cc9-j4mv-vcjp published
Nov 16, 2024 by oleibmanHigh -
XmlScanner bypass leads to XXEGHSA-jw4x-v69f-hh5w published
Nov 16, 2024 by oleibmanHigh -
XXE in PHPSpreadsheet's XLSX readerGHSA-6hwr-6v2f-3m88 published
Oct 7, 2024 by oleibmanHigh
Learn more about advisories related to PHPOffice/PhpSpreadsheet in the GitHub Advisory Database