VYPR

Maven package

org.apache.poi/poi-ooxml

pkg:maven/org.apache.poi/poi-ooxml

Vulnerabilities (1)

  • CVE-2025-31672Apr 9, 2025
    affected < 5.4.0fixed 5.4.0

    Improper Input Validation vulnerability in Apache POI. The issue affects the parsing of OOXML format files like xlsx, docx and pptx. These file formats are basically zip files and it is possible for malicious users to add zip entries with duplicate names (including the path) in t