Security Advisory

CVE-2024-55878

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-12-12 19:20:02

Last updated 2024-12-13 15:57:54

Assigner GitHub_M

State PUBLISHED

Description

SimpleXLSX is software for parsing and retrieving data from Excel XLSx files. Starting in version 1.0.12 and prior to version 1.1.12, when calling the extended toHTMLEx method, it is possible to execute arbitrary JavaScript code. Version 1.1.12 fixes the issue. As a workaround, dont use direct publication via toHTMLEx.

← Browse all CVEs View on cve.org ↗