[MEDIUM] PhpSpreadsheet has an Unauthenticated Cross-Site-Scripting (XSS) in sample file

PKSA-1p4c-ysfb-v9ph CVE-2024-45060 GHSA-v66g-p9x6-v98p

Affected package: phpoffice/phpexcel

Affected version: <=1.8.2

Reported by:
GitHub