Vulnerabilities (CVE)

Filtered by vendor Independentsoft Subscribe
Filtered by product Jspreadsheet
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-28151 1 Independentsoft 1 Jspreadsheet 2023-12-10 N/A 9.8 CRITICAL
An issue was discovered in Independentsoft JSpreadsheet before 1.1.110. The API is prone to XML external entity (XXE) injection via a remote DTD in a DOCX file.