/ 
Spreadsheet-ParseExcel-0.54
Security Advisories (1)
CVE-2023-7101 (2023-12-24)

Spreadsheet::ParseExcel version 0.65 is a Perl module used for parsing Excel files. Spreadsheet::ParseExcel is vulnerable to an arbitrary code execution (ACE) vulnerability due to passing unvalidated input from a file into a string-type “eval”. Specifically, the issue stems from the evaluation of Number format strings (not to be confused with printf-style format strings) within the Excel parsing logic.

Changes for version 0.54

  • ! Fix for height/width of hidden rows/columns with additional. tests in 05_regression.t. Thanks to Greger Leijonhufvud. http://rt.cpan.org/Public/Bug/Display.html?id=48450
  • ! Fix for mal-formed Print_Title Name block. Reported by Marc Elser.

Modules

Spreadsheet::ParseExcel
Read information from an Excel file.
Spreadsheet::ParseExcel::Cell
A class for Cells.
Spreadsheet::ParseExcel::Dump
A class for dumping Excel records.
Spreadsheet::ParseExcel::FmtDefault
A class for Cell formats.
Spreadsheet::ParseExcel::FmtJapan
A class for Cell formats.
Spreadsheet::ParseExcel::FmtJapan2
A class for Cell formats.
Spreadsheet::ParseExcel::FmtUnicode
A class for Cell formats.
Spreadsheet::ParseExcel::Font
A class for Cell fonts.
Spreadsheet::ParseExcel::Format
A class for Cell formats.
Spreadsheet::ParseExcel::SaveParser
Rewrite an existing Excel file.
Spreadsheet::ParseExcel::SaveParser::Workbook
A class for SaveParser Workbooks.
Spreadsheet::ParseExcel::SaveParser::Worksheet
A class for SaveParser Worksheets.
Spreadsheet::ParseExcel::Utility
Utility functions for Spreadsheet::ParseExcel.
Spreadsheet::ParseExcel::Workbook
A class for Workbooks.
Spreadsheet::ParseExcel::Worksheet
A class for Worksheets.

Examples

Other files