0.001 Low
EPSS
Percentile
23.6%
xlsx is vulnerable to Prototype Pollution. The vulnerability exists due to the lack of checks for user inputed specially crafted files, which allows an attacker to inject malicious properties, resulting in prototype pollution.
cdn.sheetjs.com/advisories/CVE-2023-30533
git.sheetjs.com/sheetjs/sheetjs/commit/dca90c8024e3872f93d46c83891ac03e804fbda7
git.sheetjs.com/sheetjs/sheetjs/issues/2986
git.sheetjs.com/sheetjs/sheetjs/src/branch/master/CHANGELOG.md
github.com/advisories/GHSA-4r6h-8v6p-xvw6