Lucene search
K

CVE-2026-45034 PhpSpreadsheet: File::prohibitWrappers bypass

๐Ÿ—“๏ธย 22 Jun 2026ย 20:32:32Reported byย GitHub_MTypeย 
cvelist
ย cvelist
๐Ÿ”—ย www.cve.org๐Ÿ‘ย 27ย Views

Phpspreadsheet before 1.30.5 bypasses prohibitWrappers via phar wrappers enabling code execution.

Related
Affected
Refs
ReporterTitlePublishedViews
Family
GithubExploit
Exploit for CVE-2026-45034
11 Jun 202606:47
โ€“githubexploit
ATTACKERKB
CVE-2026-45034
22 Jun 202620:32
โ€“attackerkb
Circl
CVE-2026-45034
7 Jun 202604:04
โ€“circl
CVE
CVE-2026-45034
22 Jun 202620:32
โ€“cve
EUVD
EUVD-2026-38359
22 Jun 202620:32
โ€“euvd
Github Security Blog
PHPSpreadsheet has a patch bypass for CVE-2026-34084
8 Jun 202623:00
โ€“github
NVD
CVE-2026-45034
22 Jun 202621:16
โ€“nvd
OSV
CVE-2026-45034 PhpSpreadsheet: File::prohibitWrappers bypass
22 Jun 202620:32
โ€“osv
OSV
GHSA-87M4-826X-3CRX PHPSpreadsheet has a patch bypass for CVE-2026-34084
8 Jun 202623:00
โ€“osv
Packet Storm
๐Ÿ“„ PHPSpreadsheet 5.8.0 Remote Code Execution
7 Jul 202600:00
โ€“packetstorm
Rows per page
[
  {
    "vendor": "PHPOffice",
    "product": "PhpSpreadsheet",
    "versions": [
      {
        "version": "< 1.30.5",
        "status": "affected"
      }
    ]
  }
]

Data

Build on a solid foundation withย Vulners data

Weย provide theย essential building blocks forย cybersecurity solutions withย comprehensive, structured, andย constantly updated vulnerability andย exploits data

Api

Power your application withย Vulners API

The Vulners REST API offers reliable, high-performance access toย vulnerabilityย intelligence, withย 99.9%ย SLAย uptime andย CDN-backed data delivery forย seamlessย global access

App

Assess and manage vulnerabilities withย Vulnersย tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation