securityScan() in PHPOffice PhpSpreadsheet through 1.5.0 allows a bypass of protection mechanisms for XXE via UTF-7 encoding in a .xlsx file
References
Link | Resource |
---|---|
https://github.com/MewesK/TwigSpreadsheetBundle/issues/18 | Third Party Advisory |
https://github.com/PHPOffice/PhpSpreadsheet/issues/771 | Exploit Third Party Advisory |
https://www.bishopfox.com/news/2018/11/phpoffice-versions/ | Broken Link |
https://www.drupal.org/sa-contrib-2021-043 | Third Party Advisory |
Configurations
History
04 Sep 2024, 17:45
Type | Values Removed | Values Added |
---|---|---|
First Time |
Phpoffice
Phpoffice phpspreadsheet |
|
CPE | cpe:2.3:a:phpoffice:phpspreadsheet:*:*:*:*:*:*:*:* |
Information
Published : 2018-11-14 11:29
Updated : 2024-09-04 17:45
NVD link : CVE-2018-19277
Mitre link : CVE-2018-19277
CVE.ORG link : CVE-2018-19277
JSON object : View
Products Affected
phpoffice
- phpspreadsheet
CWE
CWE-91
XML Injection (aka Blind XPath Injection)