Skip to content
/ CVE-2023-30533 Public

There were no proper POCs for CVE-2023-30533 so I made one. (Reported by Vsevolod Kokorin)

10 stars 2 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

BenEdridge/CVE-2023-30533

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
.gitignore
.gitignore
 
 
README.md
README.md
 
 
index.js
index.js
 
 
package-lock.json
package-lock.json
 
 
package.json
package.json
 
 
threaded_comment_bad.xlsx
threaded_comment_bad.xlsx
 
 

Repository files navigation

POC - CVE-2023-30533

A POC for CVE-2023-30533

Copied as per: https://cdn.sheetjs.com/advisories/CVE-2023-30533:

 All releases of SheetJS Community Edition up to version 0.19.2 are affected. This includes:

 - scripts and modules on the SheetJS CDN through version 0.19.2 [2]
 - modules published with the name `xlsx` on npmjs.com [3]
 - scripts on third-party CDNs that pull from the `xlsx` package on npmjs.com [4] [5]
 - modules published with the name `sheetjs` on deno.land [6]

https://git.sheetjs.com/sheetjs/sheetjs/issues/2929

Acknowledgements

Vsevolod Kokorin of SolidLab https://xakep.ru/2023/06/22/sheetjs-bugs/

About

There were no proper POCs for CVE-2023-30533 so I made one. (Reported by Vsevolod Kokorin)

Resources

Readme
Activity

Stars

10 stars

Watchers

1 watching

Forks

2 forks
Report repository

Languages