We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.
Please see our statement on Data Privacy.
SimpleXLSX is software for parsing and retrieving data from Excel XLSx files. Starting in 1.0.12 and ending in 1.1.13, when calling the extended toHTMLEx method, it is possible to execute arbitrary JavaScript code. This vulnerability is fixed in 1.1.13.
Reserved 2024-12-20 | Published 2024-12-23 | Updated 2024-12-28 | Assigner GitHub_MCWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
github.com/...lexlsx/security/advisories/GHSA-r87q-fj25-f8jf
github.com/...ommit/71a5e3d40d14e33161f8a40b3fd02de542218ef0
Support options