VYPR
Vendor

Spreadsheet::ParseExcel

Products
1
CVEs
2
Across products
2
Status
Private

Products

1

Recent CVEs

2
  • CVE-2023-7101KEVDec 24, 2023
    risk 0.16cvss epss 0.17

    Spreadsheet::ParseExcel version 0.65 is a Perl module used for parsing Excel files. Spreadsheet::ParseExcel is vulnerable to an arbitrary code execution (ACE) vulnerability due to passing unvalidated input from a file into a string-type “eval”. Specifically, the issue stems…

  • CVE-2024-23525Jan 17, 2024
    risk 0.00cvss epss 0.01

    The Spreadsheet::ParseXLSX package before 0.30 for Perl allows XXE attacks because it neglects to use the no_xxe option of XML::Twig.