3 matches found
The vulnerability of the generateHTMLHeader() function in the PHP library PhpSpreadsheet allows attackers to perform cross-site scripting attacks.
The vulnerability of the generateHTMLHeader function in the PhpSpreadsheet PHP library is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability could allow a remote attacker to perform cross-site scripting attacks...
Cross-site Scripting (XSS)
Overview Affected versions of this package are vulnerable to Cross-site Scripting XSS due to improper sanitization of the generateHTMLHeader parameter of the PhpOffice\PhpSpreadsheet\Writer\Html class. PoC php generateHTMLAll; Remediation There is no fixed version for phpoffice/phpexcel. Referenc...
Cross-site Scripting (XSS)
Overview phpoffice/phpspreadsheet is a Spreadsheet engine that Read, Create and Write Spreadsheet documents in PHP . Affected versions of this package are vulnerable to Cross-site Scripting XSS due to improper sanitization of the generateHTMLHeader parameter of the...