Show filters
2 Total Results
Displaying 1-2 of 2
Sort by:
Attacker Value
Unknown
CVE-2023-28151
Disclosure Date: March 24, 2023 (last updated October 08, 2023)
An issue was discovered in Independentsoft JSpreadsheet before 1.1.110. The API is prone to XML external entity (XXE) injection via a remote DTD in a DOCX file.
0
Attacker Value
Unknown
CVE-2022-48115
Disclosure Date: February 17, 2023 (last updated October 08, 2023)
The dropdown menu in jspreadsheet before v4.6.0 was discovered to be vulnerable to cross-site scripting (XSS).
0
