CVE-2025-54370

PhpOffice/PhpSpreadsheet is a pure PHP library for reading and writing spreadsheet files. Prior to versions 1.30.0, 2.1.12, 2.4.0, 3.10.0, and 5.0.0, SSRF can occur when a processed HTML document is read and displayed in the browser. The vulnerability lies in the setPath method of the...

PT-2025-34632

Name of the Vulnerable Software and Affected Versions: PhpOffice/PhpSpreadsheet versions prior to 1.30.0 PhpOffice/PhpSpreadsheet versions prior to 2.1.12 PhpOffice/PhpSpreadsheet versions prior to 2.4.0 PhpOffice/PhpSpreadsheet versions prior to 3.10.0 PhpOffice/PhpSpreadsheet versions prior to...

WWBN AVideo Security Breach

WWBN AVideo is a video platform builder written in PHP by the WWBN team. A security vulnerability exists in WWBN AVideo, which originates from an information disclosure vulnerability in the chunkFile path method of the aVideoEncoder.json.php page...

phpmyadmin-explosive path method-vulnerability warning-the black bar safety net

phpmyadmin-explosive path method: directly in the browser to access phpmyadmin in the layout. inc. php file, this file storage directory is themes/darkblueorange, examples look at the test address: http://bbs.pjhome.net/phpmyadmin/themes/darkblueorange/layout.inc.php Return the results as follows...