
phpoffice/phpspreadsheet
packagist · PHPSpreadsheet - Read, Create and Write Spreadsheet documents in PHP - Spreadsheet engine · Repository · Package
Security Advisories for phpoffice/phpspreadsheet in packagist
High
about 1 month ago
PhpSpreadsheet vulnerable to SSRF when reading and displaying a processed HTML document in the browser
packagist
phpoffice/phpspreadsheet
Moderate
8 months ago
PhpSpreadsheet allows bypassing of XSS sanitizer using the javascript protocol and special characters
packagist
phpoffice/phpspreadsheet
Moderate
8 months ago
Cross-Site Scripting (XSS) vulnerability in generateNavigation() function in PhpSpreadsheet
packagist
phpoffice/phpspreadsheet
Moderate
9 months ago
PhpSpreadsheet allows bypass XSS sanitizer using the javascript protocol and special characters
packagist
phpoffice/phpspreadsheet
Moderate
9 months ago
PhpSpreadsheet has a Cross-Site Scripting (XSS) vulnerability of the hyperlink base in the HTML page header
packagist
phpoffice/phpspreadsheet
Moderate
9 months ago
PhpSpreadsheet has a Cross-Site Scripting (XSS) vulnerability in custom properties
packagist
phpoffice/phpspreadsheet
High
9 months ago
PhpSpreadsheet allows unauthorized Reflected XSS in Currency.php file
packagist
phpoffice/phpspreadsheet
High
9 months ago
PhpSpreadsheet allows unauthorized Reflected XSS in the Accounting.php file
packagist
phpoffice/phpspreadsheet
High
9 months ago
PhpSpreadsheet allows unauthorized Reflected XSS in the constructor of the Downloader class
packagist
phpoffice/phpspreadsheet
High
9 months ago
PhpSpreadsheet allows unauthorized Reflected XSS in `Convert-Online.php` file
packagist
phpoffice/phpspreadsheet
Moderate
12 months ago
PhpSpreadsheet HTML writer is vulnerable to Cross-Site Scripting via JavaScript hyperlinks
packagist
phpoffice/phpspreadsheet
Moderate
12 months ago
PhpSpreadsheet allows absolute path traversal and Server-Side Request Forgery in HTML writer when embedding images is enabled
packagist
phpoffice/phpspreadsheet
High
12 months ago
PhpSpreadsheet allows absolute path traversal and Server-Side Request Forgery when opening XLSX file
packagist
phpoffice/phpspreadsheet
Moderate
12 months ago
PhpSpreadsheet has an Unauthenticated Cross-Site-Scripting (XSS) in sample file
packagist
phpoffice/phpspreadsheet
Moderate
about 1 year ago
PhpSpreadsheet HTML writer is vulnerable to Cross-Site Scripting via style information
packagist
phpoffice/phpspreadsheet