2 matches found
The vulnerability of the generateNavigation() function in the PHP Spreadsheet library, which allows attackers to perform cross-site scripting attacks
The vulnerability of the generateNavigation function in the PhpSpreadsheet PHP library is related to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability could allow a remote attacker to perform cross-site scripting attacks...
Cross-Site Scripting (XSS) vulnerability in generateNavigation() function in PhpSpreadsheet
Summary The researcher discovered zero-day vulnerability Cross-Site Scripting XSS vulnerability in the code which translates the XLSX file into a HTML representation and displays it in the response. Details When generating the HTML from an xlsx file containing multiple sheets, a navigation menu i...