5 matches found
CVE-2024-53924
Pycel through 1.0b30, when operating on an untrusted spreadsheet, allows code execution via a crafted formula in a cell, such as one beginning with the =IFA1=200, eval"import'os'.system substring...
PYSEC-2025-177
Pycel through 1.0b30, when operating on an untrusted spreadsheet, allows code execution via a crafted formula in a cell, such as one beginning with the =IFA1=200, eval"import'os'.system substring...
PYSEC-2025-177
Pycel through 1.0b30, when operating on an untrusted spreadsheet, allows code execution via a crafted formula in a cell, such as one beginning with the =IFA1=200, eval"import'os'.system substring...
CVE-2024-53924
Pycel through 1.0b30, when operating on an untrusted spreadsheet, allows code execution via a crafted formula in a cell, such as one beginning with the =IFA1=200, eval"import'os'.system substring...
free-mcp-excel (>=0.1.2 <=0.1.3) potentially affected by CVE-2024-53924 via pycel (=1.0.0b30)
pycel PYPI version =1.0.0b30 is affected by a known vulnerability. The following packages have a transitive dependency on pycel and may be impacted: - free-mcp-excel =0.1.2, =0.1.3 Source cves: CVE-2024-53924 Source advisory: SNYK:PYTHON-PYCEL-10050519...