XXE in PHPSpreadsheet's XLSX reader

🗓️ 07 Oct 2024 15:58:52Reported by GitHub Advisory DatabaseType

XXE bypass in PHPSpreadsheet's XLSX reader. Flawed XML encoding check allows crafty sheet to disclose sensitive server files. Escalates to information disclosure through XXE payload

Reporter	Title	Published	Views	Family All 17
Circl	CVE-2024-45293	7 Oct 202415:03	–	circl
CNNVD	PhpSpreadsheet 安全漏洞	7 Oct 202400:00	–	cnnvd
CVE	CVE-2024-45293	7 Oct 202420:03	–	cve
Cvelist	CVE-2024-45293 XML External Entity Reference (XXE) in PHPSpreadsheet's XLSX reader	7 Oct 202420:03	–	cvelist
Drupal	Loft Data Grids - Moderately critical - Multiple vulnerabilities - SA-CONTRIB-2024-054	23 Oct 202400:00	–	drupal
Nuclei	TablePress < 2.4.3 - XXE Injection	2 Jun 202610:14	–	nuclei
NVD	CVE-2024-45293	7 Oct 202420:15	–	nvd
OpenVAS	WordPress TablePress Plugin < 2.4.3 Multiple Vulnerabilities	10 Feb 202500:00	–	openvas
OSV	CVE-2024-45293 XML External Entity Reference (XXE) in PHPSpreadsheet's XLSX reader	7 Oct 202420:03	–	osv
OSV	GHSA-6HWR-6V2F-3M88 XXE in PHPSpreadsheet's XLSX reader	7 Oct 202415:58	–	osv

Vulners

Node

phpoffice phpexcelRange≤1.8.2composer

phpoffice phpspreadsheetRange2.0.0–2.1.1composer

phpoffice phpspreadsheetRange<1.29.1composer

phpoffice phpspreadsheetRange2.2.0–2.3.0composer

Source	Link
github	www.github.com/PHPOffice/PhpSpreadsheet/security/advisories/GHSA-6hwr-6v2f-3m88
github	www.github.com/PHPOffice/PhpSpreadsheet/commit/3bcd51826b7f089d1641e756c83030c30c3bdb0c
github	www.github.com/PHPOffice/PhpSpreadsheet/commit/7d6cb09f6e8204f65e6dd5a0490f7f45f44bb331
github	www.github.com/PHPOffice/PhpSpreadsheet/commit/949ff63e1f6413e6485f73af012d506aa81384bf
nvd	www.nvd.nist.gov/vuln/detail/CVE-2024-45293
github	www.github.com/advisories/GHSA-6hwr-6v2f-3m88

06 Mar 2025 18:14Current

7.4High risk

Vulners AI Score7.4

CVSS 3.17.5

EPSS0.71632

SSVC

CWE-611