Lucene search
+L

6 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 11:38 a.m.9 views

CVE-2025-22131

PhpSpreadsheet is a PHP library for reading and writing spreadsheet files. Cross-Site Scripting XSS vulnerability in the code which translates the XLSX file into a HTML representation and displays it in the response...

6.1CVSS5.9AI score0.00371EPSS
Exploits4References1
NVD
NVD
added 2025/01/20 4:15 p.m.26 views

CVE-2025-22131

PhpSpreadsheet is a PHP library for reading and writing spreadsheet files. Cross-Site Scripting XSS vulnerability in the code which translates the XLSX file into a HTML representation and displays it in the response...

6.1CVSS0.00371EPSS
Exploits4References2
CVE
CVE
added 2025/01/20 3:31 p.m.82 views

CVE-2025-22131

PhpSpreadsheet CVE-2025-22131 is an XSS in generateNavigation() during XLSX-to-HTML conversion when sheet names are not escaped for multi-sheet files. Affects PhpSpreadsheet versions prior to 2.2.2, 2.1.2, and 1.29.4; PoCs exist showing cookie-exfiltration via HTML navigation. Root cause: unsanit...

6.1CVSS5.7AI score0.00371EPSS
Exploits4References2Affected Software1
OSV
OSV
added 2025/01/20 3:31 p.m.9 views

CVE-2025-22131 Cross-Site Scripting (XSS) vulnerability in generateNavigation() function

PhpSpreadsheet is a PHP library for reading and writing spreadsheet files. Cross-Site Scripting XSS vulnerability in the code which translates the XLSX file into a HTML representation and displays it in the response...

5.1CVSS5.8AI score0.00371EPSS
Exploits4References4
Vulnrichment
Vulnrichment
added 2025/01/20 3:31 p.m.13 views

CVE-2025-22131 Cross-Site Scripting (XSS) vulnerability in generateNavigation() function

PhpSpreadsheet is a PHP library for reading and writing spreadsheet files. Cross-Site Scripting XSS vulnerability in the code which translates the XLSX file into a HTML representation and displays it in the response...

5.1CVSS6.1AI score0.00371EPSS
Exploits4References2
Cvelist
Cvelist
added 2025/01/20 3:31 p.m.33 views

CVE-2025-22131 Cross-Site Scripting (XSS) vulnerability in generateNavigation() function

PhpSpreadsheet is a PHP library for reading and writing spreadsheet files. Cross-Site Scripting XSS vulnerability in the code which translates the XLSX file into a HTML representation and displays it in the response...

5.1CVSS0.00371EPSS
Exploits4References2
Rows per page
Query Builder