6 matches found
CVE-2026-40296
PhpSpreadsheet is a pure PHP library for reading and writing spreadsheet files. The HTML writer skips htmlspecialchars escaping when a cell's formatted value differs from the original value. When a cell has a custom number format containing the text placeholder @ along with any additional literal...
EUVD-2018-0433
Malware in sbrugna...
SAP BW/4HANA 安全漏洞
SAP BW/4HANA is a packaged data warehouse based on SAP HANA from SAP, Germany. A security vulnerability exists in SAP BW/4HANA that stems from the possibility of exposing unauthorized cell values to data responses...
GHSA-X5CW-843F-R366 x-data-spreadsheet through 1.1.9 vulnerable to Cross-site Scripting
All versions of package x-data-spreadsheet are vulnerable to Cross-site Scripting XSS due to missing sanitization of values inserted into the cells...
CVE-2018-16459
An unescaped payload in exceljs v1.6 allows a possible XSS via cell value when worksheet is displayed in browser...
CVE-2018-16459
An unescaped payload in exceljs v1.6 allows a possible XSS via cell value when worksheet is displayed in browser...