VYPR

npm package

libxl

pkg:npm/libxl

Vulnerabilities (1)

  • CVE-2016-10585HigJun 1, 2018
    affected <= 0.4.5

    libxl provides Node bindings for the libxl library for reading and writing excel (XLS and XLSX) spreadsheets. libxl downloads zipped resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by swapping out the reques