Pycel allows code injection via a crafted formula

Pycel through 1.0b30, when operating on an untrusted spreadsheet, allows code execution via a crafted formula in a cell, such as one beginning with the =IFA1=200, eval"import'os'.system substring...

GHSA-PW67-XJHQ-389W Pycel allows code injection via a crafted formula

Pycel through 1.0b30, when operating on an untrusted spreadsheet, allows code execution via a crafted formula in a cell, such as one beginning with the =IFA1=200, eval"import'os'.system substring...

CVE-2024-53924

Pycel through 1.0b30, when operating on an untrusted spreadsheet, allows code execution via a crafted formula in a cell, such as one beginning with the =IFA1=200, eval"import'os'.system substring...

CVE-2024-53924

Pycel through 1.0b30, when operating on an untrusted spreadsheet, allows code execution via a crafted formula in a cell, such as one beginning with the =IFA1=200, eval"import'os'.system substring...

PYSEC-2025-177

Pycel through 1.0b30, when operating on an untrusted spreadsheet, allows code execution via a crafted formula in a cell, such as one beginning with the =IFA1=200, eval"import'os'.system substring...

CVE-2024-53924

CVE-2024-53924 affects Pycel up to version 1.0b30. A vulnerability in evaluating Excel-like formulas allows arbitrary code execution when processing untrusted spreadsheets (example: crafted formulas such as using eval). Impact: potential code execution within Pycel’s formula evaluation path. Affe...

CVE-2011-0184

QuickLook in Apple Mac OS X 10.6 before 10.6.7 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via an Excel spreadsheet with a crafted formula that uses unspecified opcodes...

Memory corruption

QuickLook in Apple Mac OS X 10.6 before 10.6.7 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via an Excel spreadsheet with a crafted formula that uses unspecified opcodes...