Lucene search
K

5 matches found

CNNVD
CNNVD
added 2026/05/05 12:0 a.m.9 views

PhpSpreadsheet 跨站脚本漏洞

PhpSpreadsheet is a PHP library developed by PHPOffice, designed for reading and writing spreadsheet files. PhpSpreadsheet has a cross-site scripting vulnerability. This vulnerability arises when the HTML Writer skips htmlspecialchars output escaping when using custom number formats that contain ...

5.4CVSS5.8AI score0.00202EPSS
Exploits1References2
Snyk
Snyk
added 2026/04/28 10:57 p.m.5 views

Cross-site Scripting (XSS)

Overview phpoffice/phpspreadsheet is a Spreadsheet engine that Read, Create and Write Spreadsheet documents in PHP . Affected versions of this package are vulnerable to Cross-site Scripting XSS in the HTML export process when handling custom number format codes containing the @ text placeholder. ...

5.4CVSS5.7AI score0.00225EPSS
Exploits1References2
OSV
OSV
added 2022/05/01 4:15 p.m.3 views

DEBIAN-CVE-2022-25844

The package angular after 1.7.0 are vulnerable to Regular Expression Denial of Service ReDoS by providing a custom locale rule that makes it possible to assign the parameter in posPre: ' '.repeat of NUMBERFORMATS.PATTERNS1.posPre with a very high value. Note: 1 This package has been deprecated an...

7.5CVSS6.7AI score0.04658EPSS
Exploits1References1
Snyk
Snyk
added 2022/04/21 8:37 a.m.7 views

Regular Expression Denial of Service (ReDoS)

Overview angular is a package that lets you write client-side web applications as if you had a smarter browser. It also lets you use HTML as your template language and lets you extend HTML’s syntax to express your application’s components clearly and succinctly. Affected versions of this package...

7.5CVSS6.5AI score0.04658EPSS
Exploits1References2
Snyk
Snyk
added 2022/04/21 8:37 a.m.3 views

Regular Expression Denial of Service (ReDoS)

Overview Affected versions of this package are vulnerable to Regular Expression Denial of Service ReDoS by providing a custom locale rule that makes it possible to assign the parameter in posPre: ' '.repeat of NUMBERFORMATS.PATTERNS1.posPre with a very high value. Note: 1 This package has been...

7.5CVSS6.6AI score0.04658EPSS
Exploits1References2
Rows per page
Query Builder