Filtered by vendor Sheetjs Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2023-30533 1 Sheetjs 1 Sheetjs 2024-11-21 7.8 High
SheetJS Community Edition before 0.19.3 allows Prototype Pollution via a crafted file. In other words. 0.19.2 and earlier are affected, whereas 0.19.3 and later are unaffected.
CVE-2021-32014 2 Oracle, Sheetjs 3 Rest Data Services, Sheetjs, Sheetjs Pro 2024-11-21 5.5 Medium
SheetJS and SheetJS Pro through 0.16.9 allows attackers to cause a denial of service (CPU consumption) via a crafted .xlsx document that is mishandled when read by xlsx.js.