CVE-2015-3542XML External Entity (XXE) Injection in Phpexcel

CWE-611XML External Entity (XXE) Injection2 documents2 sources
Severity
HIGH
No vector
EPSS
No EPSS data
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Phpoffice Phpexcel
Timeline
PublishedNov 7

Description

PHPExcel XXE Vulnerability PHPExcel XXE Vulnerability

Affected Packages1 packages

Packagistphpoffice/phpexcel< 1.8.1

🔴Vulnerability Details

2
OSV
PHPExcel XXE Vulnerability2024-11-07
GHSA
PHPExcel XXE Vulnerability2024-11-07
CVE-2015-3542 — XML External Entity (XXE) Injection | cvebase