Cross-site Scripting vulnerability in SimpleXLSXEx::readThemeColors, SimpleXLSXEx::getColorValue and SimpleXLSX::toHTMLEx
When calling the extended toHTMLEx method, it is possible to execute arbitrary JavaScript code.
Advisories for Composer/Shuchkin/Simplexlsx package
2024
Cross-site Scripting vulnerability in SimpleXLSXEx::readXfs and SimpeXLSX::toHTMLEx
When calling the extended toHTMLEx method, it is possible to execute arbitrary JavaScript code.