`phpoffice/phpspreadsheet`

Ecosystem:
packagist

Package URL:
pkg:composer/phpoffice/phpspreadsheet

Total PRs:
327 Dependabot PRs

Latest PR:
12 days ago

Unique Repositories:
180 repositories

Unique Repos (30 days):
1 repository

Security Advisories

PhpSpreadsheet allows bypassing of XSS sanitizer using the javascript protocol and special characters

GHSA-r57h-547h-w24f CVE-2025-23210 MODERATE published 11 months ago • updated 2 days ago

**Product:** PhpSpreadsheet **Version:** 3.8.0 **CWE-ID:** CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripti...

Cross-site scripting in phpoffice/phpspreadsheet

GHSA-4mqv-gcr3-pff9 CVE-2020-7776 MODERATE published over 4 years ago • updated 2 days ago

This affects the package phpoffice/phpspreadsheet. The library is vulnerable to XSS when creating an html output from an excel file by adding a com...

PhpSpreadsheet allows bypass XSS sanitizer using the javascript protocol and special characters

GHSA-q9jv-mm3r-j47r CVE-2024-56412 MODERATE published about 1 year ago • updated 2 days ago

# Bypass XSS sanitizer using the javascript protocol and special characters **Product**: Phpspreadsheet **Version**: version 3.6.0 **CWE-ID**: CWE...

PhpSpreadsheet has a Cross-Site Scripting (XSS) vulnerability of the hyperlink base in the HTML page header

GHSA-hwcp-2h35-p66w CVE-2024-56411 MODERATE published about 1 year ago • updated 2 days ago

# Cross-Site Scripting (XSS) vulnerability of the hyperlink base in the HTML page header **Product**: Phpspreadsheet **Version**: version 3.6.0 **...

PhpSpreadsheet allows unauthorized Reflected XSS in the constructor of the Downloader class

GHSA-jmpx-686v-c3wx CVE-2024-56365 HIGH published about 1 year ago • updated 2 days ago

# Unauthorized Reflected XSS in the constructor of the `Downloader` class **Product**: Phpspreadsheet **Version**: version 3.6.0 **CWE-ID**: CWE-7...

View all 22 advisories

Recent PRs

RSS Feed

Bump phpoffice/phpspreadsheet from 3.9.1 to 3.10.0

szentjozsefhackathon/szentiras.eu #269

3.9.1 → 3.10.0 Minor PR

Closed 12 days ago 1 comment

build(deps): bump the all group across 1 directory with 10 updates

TegarAditya/madyotomo #192

5.0.0 → 5.2.0 Minor PR

Closed about 2 months ago 1 comment

Chore(deps): Bump phpoffice/phpspreadsheet from 5.1.0 to 5.2.0

nextcloud/forms #3020

5.1.0 → 5.2.0 Minor PR

Open 2 months ago 3 comments

Bump phpoffice/phpspreadsheet from 5.1.0 to 5.2.0

MarijnDoeve/TijdVoorDeTest #54

5.1.0 → 5.2.0 Minor PR

Open 2 months ago 1 comment

build(deps): bump the minor group in /backend with 3 updates

algirdasc/expensave #311

5.1.0 → 5.2.0 Minor PR

Closed 2 months ago 1 comment

Bump phpoffice/phpspreadsheet from 1.29.10 to 1.30.0

spechycom/spechy-dealership #7

1.29.10 → 1.30.0 Minor PR

Open 3 months ago

Bump phpoffice/phpspreadsheet from 3.9.1 to 3.10.0

Indicia-Team/warehouse #576

3.9.1 → 3.10.0 Minor PR

Open 3 months ago

Bump phpoffice/phpspreadsheet from 4.3.1 to 5.0.0 in /www

Intermesh/groupoffice #1349

4.3.1 → 5.0.0 Major PR

Open 3 months ago

Bump the composer group across 1 directory with 2 updates

HandyKnox/mautic-marketing #2

4.2.0 → 4.5.0 Minor PR

Open 3 months ago

Bump phpoffice/phpspreadsheet from 1.29.10 to 1.30.0

aldairg-dev/StudentChoice #70

1.29.10 → 1.30.0 Minor PR

Open 3 months ago

build(deps): Bump phpoffice/phpspreadsheet from 1.29.10 to 1.30.0

drorganvidez/evidentia #160

1.29.10 → 1.30.0 Minor PR

Open 3 months ago

build(deps-dev): bump phpoffice/phpspreadsheet from 4.5.0 to 5.0.0 in the composer group across 1 directory

lion-packages/spreadsheet #39

4.5.0 → 5.0.0 Major PR

Open 3 months ago

build(deps-dev): update phpoffice/phpspreadsheet requirement from ^2.2 || ^4.0 to ^2.2 || ^4.0 || ^5.0

lion-packages/spreadsheet #36

^2.2 || ^4.0 → ^2.2 || ^4.0 || ^5.0

Closed 3 months ago 1 comment

Update phpoffice/phpspreadsheet requirement from ^1.29 to ^5.1 in /php-symfony-neuron

cf-toolsuite/tanzu-genai-showcase #48

^1.29 → ^5.1

Closed 3 months ago 2 comments

Bump phpoffice/phpspreadsheet from 4.0.0 to 5.1.0

ajithkumarkannankmkd95/glpi #121

4.0.0 → 5.1.0 Major PR

Closed 3 months ago 1 comment

Bump phpoffice/phpspreadsheet from 1.29.0 to 1.30.0

greatsami/multi-vendors-store #3

1.29.0 → 1.30.0 Minor PR

Merged 3 months ago

Update phpoffice/phpspreadsheet requirement from ^2.2 to ^5.1

lucasdominguess/crud_de_usuarios_php_slim4 #40

^2.2 → ^5.1

Open 3 months ago

Bump phpoffice/phpspreadsheet from 2.3.8 to 5.1.0

Ecodev/my-ichtus #172

2.3.8 → 5.1.0 Major PR

Open 3 months ago

Bump phpoffice/phpspreadsheet from 4.3.1 to 5.0.0

yoichi-kaneko/misc_simulate #91

4.3.1 → 5.0.0 Major PR

Open 3 months ago

Bump phpoffice/phpspreadsheet from 1.29.10 to 1.30.0

erfantkerfan/bank #94

1.29.10 → 1.30.0 Minor PR

Open 3 months ago

Bump phpoffice/phpspreadsheet from 1.29.10 to 1.30.0

arbory/arbory #375

1.29.10 → 1.30.0 Minor PR

Open 3 months ago

Bump phpoffice/phpspreadsheet from 4.4.0 to 5.0.0

tainacan/tainacan #975

4.4.0 → 5.0.0 Major PR

Open 3 months ago 3 comments

chore(deps): bump phpoffice/phpspreadsheet from 1.29.9 to 1.30.0 in /web/app/plugins/e-addons-dev

frocentric/wordpress #1285

1.29.9 → 1.30.0 Minor PR

Open 3 months ago

Bump phpoffice/phpspreadsheet from 1.29.0 to 1.30.0

keanbarz/peppcodes #1

1.29.0 → 1.30.0 Minor PR

Merged 3 months ago

Update phpoffice/phpspreadsheet requirement from ^5.0 to ^5.1

Zopkit/GLPI #18

^5.0 → ^5.1

Open 3 months ago

Bump phpoffice/phpspreadsheet from 1.29.10 to 1.30.0

ZTL-ARTCC/Current_Website #794

1.29.10 → 1.30.0 Minor PR

Merged 3 months ago

Bump phpoffice/phpspreadsheet from 1.12.0 to 1.30.0

yongyutTG/PcDetail #2

1.12.0 → 1.30.0 Minor PR

Open 3 months ago

Bump phpoffice/phpspreadsheet from 1.18.0 to 1.30.0

cultuurnet/udb3-backend #2099

1.18.0 → 1.30.0 Minor PR

Closed 4 months ago 4 comments

build(deps): bump the all group across 1 directory with 8 updates

TegarAditya/madyotomo #190

5.0.0 → 5.1.0 Minor PR

Closed 4 months ago 2 comments

Bump phpoffice/phpspreadsheet from 4.5.0 to 5.0.0

GhostLtd/dft-local-data-acquisition-portal #10

4.5.0 → 5.0.0 Major PR

Closed 4 months ago 1 comment

chore(deps): bump phpoffice/phpspreadsheet from 1.29.10 to 1.30.0

privatescanbv/krayin-laravel-crm #100

1.29.10 → 1.30.0 Minor PR

Closed 4 months ago 1 comment

Bump phpoffice/phpspreadsheet from 1.29.7 to 1.30.0

markpruett571/rubixml-laravel-housing #3

1.29.7 → 1.30.0 Minor PR

Open 4 months ago

Bump phpoffice/phpspreadsheet from 1.29.9 to 1.30.0

btcpayserver/prestashop-plugin #200

1.29.9 → 1.30.0 Minor PR

Merged 4 months ago

Bump phpoffice/phpspreadsheet from 1.29.9 to 1.30.0

Project60/org.project60.bic #87

1.29.9 → 1.30.0 Minor PR

Merged 4 months ago

Bump phpoffice/phpspreadsheet from 1.29.10 to 1.30.0

AmpersandTarski/prototype #274

1.29.10 → 1.30.0 Minor PR

Closed 4 months ago

Bump phpoffice/phpspreadsheet from 1.29.9 to 1.30.0

GV-Greg/FormaCube #66

1.29.9 → 1.30.0 Minor PR

Merged 4 months ago

USAGOV-2518: Bump phpoffice/phpspreadsheet from 3.9.1 to 3.10.1

usagov/usagov-2021 #2473

3.9.1 → 3.10.1 Minor PR

Open 4 months ago

chore(deps): bump phpoffice/phpspreadsheet from 4.5.0 to 5.0.0

Admidio/admidio #1847

4.5.0 → 5.0.0 Major PR

Closed 4 months ago 1 comment

Bump the composer group across 1 directory with 2 updates

krayin/laravel-crm #2360

1.29.10 → 1.30.0 Minor PR

Closed 4 months ago

Bump phpoffice/phpspreadsheet from 1.29.10 to 1.30.0

cevi/zopf #80

1.29.10 → 1.30.0 Minor PR

Open 4 months ago

chore(deps): bump phpoffice/phpspreadsheet from 1.29.7 to 1.30.0 in /src in the composer group across 1 directory

fossology/fossology #3126

1.29.7 → 1.30.0 Minor PR

Open 4 months ago

build(deps): Bump phpoffice/phpspreadsheet from 1.29.9 to 1.30.0 in /example/laravel-admin-panel-api

BaseMax/laravel-11-docs-swagger #28

1.29.9 → 1.30.0 Minor PR

Open 4 months ago

Bump phpoffice/phpspreadsheet from 1.16.0 to 1.30.0

BayuBP79/produk_crud #2

1.16.0 → 1.30.0 Minor PR

Open 4 months ago

Bump phpoffice/phpspreadsheet from 1.29.10 to 1.30.0

hanzo-alpha/reno-v2 #30

1.29.10 → 1.30.0 Minor PR

Merged 4 months ago 1 comment

Bump the composer group across 2 directories with 5 updates

rezalas/riftshadow #278

1.29.4 → 1.30.0 Minor PR

Merged 4 months ago

Bump phpoffice/phpspreadsheet from 1.29.0 to 5.1.0

rondo-verlag/song-manager #50

1.29.0 → 5.1.0 Major PR

Open 4 months ago

Bump phpoffice/phpspreadsheet from 2.3.8 to 2.4.0

mapasculturais/mapasculturais #3529

2.3.8 → 2.4.0 Minor PR

Open 4 months ago

composer: update phpoffice/phpspreadsheet requirement from ^5.0 to ^5.1

Spoje-NET/PHP-Realpad-Takeout #11

^5.0 → ^5.1

Merged 4 months ago 1 comment

build(deps): bump the major group across 1 directory with 3 updates

algirdasc/expensave #295

4.5.0 → 5.1.0 Major PR

Merged 4 months ago

Bump phpoffice/phpspreadsheet from 1.29.9 to 1.30.0

amorebietakoUdala/kontratu-txikiak #59

1.29.9 → 1.30.0 Minor PR

Open 4 months ago

Package Details

Name:	`phpoffice/phpspreadsheet`
Ecosystem:	packagist
PURL Type:	composer
Package URL:	`pkg:composer/phpoffice/phpspreadsheet`
JSON API:	View JSON

Security Advisories

22

Active advisories

HIGH 12

MODERATE 10

View All composer Advisories

Package Information

Description:

PHPSpreadsheet - Read, Create and Write Spreadsheet documents in PHP - Spreadsheet engine

Repository:	https://github.com/PHPOffice/PhpSpreadsheet
Homepage:	https://github.com/PHPOffice/PhpSpreadsheet
Latest Release:	`4.3.1` 8 months ago
Dependent Repos:	20,090
Dependent Packages:	1,063
Downloads:	236,155,896
Ranking:	Top 0.0638% by dependent repos Top 0.0389% by downloads Top 0.0406% by dependent pkgs

PR Status

Open 129 (39.4%)

Merged 64 (19.6%)

Closed 112 (34.3%)

PR Types

Minor 178 (54.4%)

Major 72 (22.0%)

Patch 36 (11.0%)