Ecosyste.ms: Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

Security Advisories: GSA_kwCzR0hTQS0zbTl4LTJxZmoteHZxNM4ABBD1

PHPExcel XXE Vulnerability

Permalink: https://github.com/advisories/GHSA-3m9x-2qfj-xvq4
JSON: https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS0zbTl4LTJxZmoteHZxNM4ABBD1
Source: GitHub Advisory Database
Origin: Unspecified
Severity: High
Classification: General
Published: 3 months ago
Updated: 3 months ago

Identifiers: GHSA-3m9x-2qfj-xvq4, CVE-2015-3542
References:

https://github.com/PHPOffice/PHPExcel/commit/0ab614fd952f82f9b7a9280731daa2300e6b000c
https://github.com/FriendsOfPHP/security-advisories/blob/master/phpoffice/phpexcel/CVE-2015-3542.yaml
https://github.com/advisories/GHSA-3m9x-2qfj-xvq4

Repository: https://github.com/PHPOffice/PHPExcel
Blast Radius: 0.0

Affected Packages

packagist:phpoffice/phpexcel

Dependent packages: 473
Dependent repositories: 7,228
Downloads: 56,152,722 total
Affected Version Ranges: < 1.8.1
Fixed in: 1.8.1
All affected versions: 1.7.9, 1.8.0
All unaffected versions: 1.8.1, 1.8.2