- Description
- SimpleXLSX is software for parsing and retrieving data from Excel XLSx files. Starting in 1.0.12 and ending in 1.1.13, when calling the extended toHTMLEx method, it is possible to execute arbitrary JavaScript code. This vulnerability is fixed in 1.1.13.
- Source
- security-advisories@github.com
- NVD status
- Awaiting Analysis
CVSS 3.1
- Type
- Secondary
- Base score
- 5.4
- Impact score
- 2.7
- Exploitability score
- 2.3
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
- Severity
- MEDIUM
- security-advisories@github.com
- CWE-79
- Hype score
- Not currently trending
CVE Alert: CVE-2024-56364 - https://t.co/PEJeOfWxBT #OSINT #ThreatIntel #CyberSecurity #cve_2024_56364
@RedPacketSec
24 Dec 2024
6 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-56364 Arbitrary JavaScript Execution Vulnerability in SimpleXLSX Fixed in 1.1.... https://t.co/JwTTg08epA Vulnerability Notification: https://t.co/xhLrNnfyrO
@VulmonFeeds
23 Dec 2024
37 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-56364 SimpleXLSX is software for parsing and retrieving data from Excel XLSx files. Starting in 1.0.12 and ending in 1.1.13, when calling the extended toHTMLEx method, it i… https://t.co/OjMmlqTwaF
@CVEnew
23 Dec 2024
396 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes