CVE-2024-45060 | PHPOffice PhpSpreadsheet up to 1.29.1/2.1.0 45_Quadratic_equation_solver.php cross site scripting

Inserito da Angelo Barbosa | Ott 7, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in PHPOffice PhpSpreadsheet up to 1.29.1/2.1.0. Affected by this issue is some unknown functionality of the file 45_Quadratic_equation_solver.php. The manipulation leads to cross site scripting.

This vulnerability is handled as CVE-2024-45060. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-45060 | PHPOffice PhpSpreadsheet up to 1.29.1/2.1.0 45_Quadratic_equation_solver.php cross site scripting

Post correlati

CVE-2022-47374 | Siemens SIMATIC PC-Station Plus recursion (ssa-892915)

CVE-2024-42052 | Splashtop Streamer up to 3.5.7.x on Windows Installation wevtutil.exe temp file

CVE-2024-6203 | Halo Service Solutions HaloITSM up to 2.146.0 Password Reset Token password recovery

CVE-2023-45316 | Mattermost up to 7.8.14/8.1.5/9.0.3/9.1.2/9.2.1 Telemetry Run ID path traversal