CVE-2025-1434

The Spreadsheet view is vulnerable to a XSS attack, where a remote unauthorised attacker can read a limited amount of values or DoS the affected spreadsheet. Disclosure of secrets or other system settings is not affected as well as other spreadsheets still work as expected...

EUVD-2021-24876

Malware in sbrugna...

EUVD-2011-2867

Malware in sbrugna...

EUVD-2024-2677

Malicious code in bioql PyPI...

EUVD-2022-4725

Malicious code in bioql PyPI...

EUVD-2025-7399

Malicious code in bioql PyPI...

Formula Injection (CSV Injection)

unopim/unopim is vulnerable to Formula Injection CSV Injection. The vulnerability is due to malicious content inserted into a CSV file, which allows an attacker to exploit spreadsheet applications interpreting the input as formulas or commands instead of plain text...

CVE-2012-5672

Microsoft Excel Viewer aka Xlview.exe and Excel in Microsoft Office 2007 aka Office 12 allow remote attackers to cause a denial of service read access violation and application crash via a crafted spreadsheet file, as demonstrated by a .xls file with battery voltage data...

CVE-2025-1434

CVE-2025-1434 describes an XSS vulnerability in the Spreadsheet view of Areal Topkapi Vision Webserv2. The weakness allows a remote, unauthenticated attacker to read a limited amount of values or perform a denial-of-service (DoS) on the affected spreadsheet. Disclosure of secrets or other system ...

CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing

Improper Validation of Array Index vulnerability in the spreadsheet component of The Document Foundation LibreOffice allows an attacker to craft a spreadsheet document that will cause an array index underflow when loaded. In the affected versions of LibreOffice certain malformed spreadsheet...

Microsoft Excel 代码注入漏洞

Microsoft Excel is a spreadsheet processing software in the Office suite from Microsoft USA. A remote code execution vulnerability exists in Microsoft Excel. An attacker can exploit this vulnerability to execute arbitrary code on the system...

Memory corruption

Microsoft Excel 2003 SP3, 2007 SP2 and SP3, and 2010 SP1; Excel Viewer; and Office Compatibility Pack SP2 and SP3 allow remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted spreadsheet, aka "Excel Memory Corruption Vulnerability."...

CVE-2011-1274

Vulnerability CVE-2011-1274 affects Microsoft Excel and related Office components across multiple platforms (Excel 2002/2003/2007; Office for Mac 2004/2008; Excel Viewer; Open XML Converter for Mac; Office Compatibility Pack). The issue arises when parsing certain Excel record structures, where i...

CVE-2003-0821

Microsoft Excel 97, 2000, and 2002 allows remote attackers to execute arbitrary code via a spreadsheet with a malicious XLM Excel 4 macro that bypasses the macro security model...