Lucene search
RootSSV:61839HistoryMar 18, 2014 - 12:00 a.m.
PHPExcel XML外部实体处理漏洞
2014-03-1800:00:00
Root
www.seebug.org
913
0.005 Low
EPSS
Percentile
74.3%
CVE ID:CVE-2014-2054
PHPExcel是用来操作Office Excel文档的一个PHP类库,它基于微软的OpenXML标准和PHP语言。
PHPExcel在解析XML实体时存在错误,允许攻击者利用漏洞提交包含外部实体引用的XML文档,获取系统文件内容信息。
0
PHPExcel 1.x
PHPExcel 1.8.0已经修复该漏洞,建议用户下载更新:
https://github.com/PHPOffice/PHPExce
Related
prion
prion
Xxe
2014-06-04 14:55:00
github
github
PHPExcel vulnerable to XXE attacks through libxml
2022-05-17 04:42:46
cvelist
cvelist
CVE-2014-2054
2014-06-04 14:00:00
cve
cve
CVE-2014-2054
2014-06-04 14:55:00
osv
osv
PHPExcel vulnerable to XXE attacks through libxml
2022-05-17 04:42:46
ubuntucve
ubuntucve
CVE-2014-2054
2014-06-04 00:00:00
owncloud
owncloud
Server: XXE in multiple third party components
2014-07-03 02:00:00
XXE in multiple third party components - ownCloud
2014-07-03 18:22:45
openvas
openvas
ownCloud Multiple Vulnerabilities-02 (Jul 2014)
2014-07-03 00:00:00