[MEDIUM] PhpSpreadsheet has an Unauthenticated Cross-Site-Scripting (XSS) in sample file

PKSA-dvbq-8ft2-ngrw CVE-2024-45060 GHSA-v66g-p9x6-v98p

Affected package: phpoffice/phpspreadsheet

Affected version: >=2.0.0,<2.1.1|<1.29.2|>=2.2.0,<2.3.0

Reported by:
GitHub