12 matches found
PT-2026-34048
https://t.co/sNLNjScHo3 verified an insecure deserialization bug in pycel = 1.0b30. @DirkGor It is now tracked as CVE-2026-30108. The payload executed during pickle.load before the object was rejected. pycel has 618 GitHub stars so far. https://t.co/WqAbLKo6Bi...
CVE-2024-53924
Pycel through 1.0b30, when operating on an untrusted spreadsheet, allows code execution via a crafted formula in a cell, such as one beginning with the =IFA1=200, eval"import'os'.system substring...
Exploit for Code Injection in Dgorissen Pycel
CVE-2024-53924 - Description: Pycel through 1.0b30, when oper...
Pycel allows code injection via a crafted formula
Pycel through 1.0b30, when operating on an untrusted spreadsheet, allows code execution via a crafted formula in a cell, such as one beginning with the =IFA1=200, eval"import'os'.system substring...
PYSEC-2025-177
Pycel through 1.0b30, when operating on an untrusted spreadsheet, allows code execution via a crafted formula in a cell, such as one beginning with the =IFA1=200, eval"import'os'.system substring...
CVE-2024-53924
Pycel through 1.0b30, when operating on an untrusted spreadsheet, allows code execution via a crafted formula in a cell, such as one beginning with the =IFA1=200, eval"import'os'.system substring...
PYSEC-2025-177
Pycel through 1.0b30, when operating on an untrusted spreadsheet, allows code execution via a crafted formula in a cell, such as one beginning with the =IFA1=200, eval"import'os'.system substring...
CVE-2024-53924
Pycel through 1.0b30, when operating on an untrusted spreadsheet, allows code execution via a crafted formula in a cell, such as one beginning with the =IFA1=200, eval"import'os'.system substring...
CVE-2024-53924
Pycel through 1.0b30, when operating on an untrusted spreadsheet, allows code execution via a crafted formula in a cell, such as one beginning with the =IFA1=200, eval"import'os'.system substring...
CVE-2024-53924
Pycel through 1.0b30, when operating on an untrusted spreadsheet, allows code execution via a crafted formula in a cell, such as one beginning with the =IFA1=200, eval"import'os'.system substring...
pycel 安全漏洞
pycel is a library for compiling excel spreadsheets into python code and visualizing them as graphs by Dirk Gorissen, a personal developer. A security vulnerability exists in pycel 1.0b30 and earlier versions, which stems from the possibility of executing arbitrary code when processing...
free-mcp-excel (>=0.1.2 <=0.1.3) potentially affected by CVE-2024-53924 via pycel (=1.0.0b30)
pycel PYPI version =1.0.0b30 is affected by a known vulnerability. The following packages have a transitive dependency on pycel and may be impacted: - free-mcp-excel =0.1.2, =0.1.3 Source cves: CVE-2024-53924 Source advisory: SNYK:PYTHON-PYCEL-10050519...