phpoffice/phpspreadsheet Security Advisories for 1.0.0 (5)
-
[HIGH] XXE in PHPSpreadsheet encoding is returned
PKSA-xp7t-fbrb-qjv4 CVE-2024-45048 GHSA-ghg6-32f9-2jp7
Affected version: >=2.0.0,<2.1.1|>=2.2.0,<2.2.1|<1.29.1
Reported by:
GitHub -
[MEDIUM] PhpSpreadsheet HTML writer is vulnerable to Cross-Site Scripting via style information
PKSA-m4hk-rk8p-4t5p CVE-2024-45046 GHSA-wgmf-q9vr-vww6
Affected version: <1.29.1|>=2.0.0,<2.1.0
Reported by:
GitHub -
[MEDIUM] XSS Vulnerability in HTML Writer
PKSA-xgcn-ywd7-3wqn CVE-2020-7776 GHSA-4mqv-gcr3-pff9
Affected version: <1.16.0
Reported by:
GitHub, FriendsOfPHP/security-advisories -
[HIGH] XXE Vulnerability
PKSA-zdkr-vbc6-f2vy CVE-2019-12331 GHSA-vvwv-h69m-wg6f
Affected version: <1.8.0
Reported by:
GitHub, FriendsOfPHP/security-advisories -
[HIGH] XXE Vulnerability
PKSA-v15t-c7gz-7kpt CVE-2018-19277 GHSA-xcrg-29h7-h4cj
Affected version: <=1.5.0
Reported by:
GitHub, FriendsOfPHP/security-advisories