CVE-2024-23525 | Spreadsheet::ParseXLSX up to 0.29 on Perl XML::Twig no_xxe xml external entity reference (Issue 10)

Inserito da Angelo Barbosa | Gen 18, 2024 | CVE

A vulnerability was found in Spreadsheet::ParseXLSX up to 0.29 on Perl and classified as critical. This issue affects the function XML::Twig. The manipulation of the argument no_xxe leads to xml external entity reference.

The identification of this vulnerability is CVE-2024-23525. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-23525 | Spreadsheet::ParseXLSX up to 0.29 on Perl XML::Twig no_xxe xml external entity reference (Issue 10)

Post correlati

CVE-2022-28975 | Infoblox NIOS 8.5.2-409296 VLAN View Name cross site scripting

CVE-2024-31862 | Apache Zeppelin 0.10.x Notebook Name denial of service

CVE-2024-1027 | SourceCodester Facebook News Feed Like 1.0 Post unrestricted upload

CVE-2024-28118 | grav up to 1.7.44 Twig Extension Class code injection