A vulnerability was found in PHPOffice PhpSpreadsheet up to 1.29.1/2.1.0. It has been rated as problematic. This issue affects the function
setEmbedImages
of the component XLSX File Handler. The manipulation leads to absolute path traversal.
The identification of this vulnerability is CVE-2024-45291. The attack may be initiated remotely. There is no exploit available.
It is recommended to upgrade the affected component.