Tozt Spreadsheet\
2 CVEs affecting Tozt Spreadsheet\. Latest disclosed: 2024-01-18. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-23525 | Medium | 6.5 | 2024-01-18 | The Spreadsheet::ParseXLSX package before 0.30 for Perl allows XXE attacks because it neglects to use the no_xxe option of XML::Twig. |
CVE-2024-22368 | Medium | 5.5 | 2024-01-09 | The Spreadsheet::ParseXLSX package before 0.28 for Perl can encounter an out-of-memory condition during parsing of a crafted XLSX document. This occurs because… |