phpoffice/phpspreadsheet is vulnerable to cross-site scripting (XSS). The vulnerability exists when creating a HTML output using an excel cell, through a comment on any cell, as the comments gets concatenated as part of the link.
CPE | Name | Operator | Version |
---|---|---|---|
phpoffice/phpspreadsheet | le | 1.15.0 |