[HIGH] PhpSpreadsheet allows absolute path traversal and Server-Side Request Forgery when opening XLSX file

PKSA-81dj-mb26-861s CVE-2024-45290 GHSA-5gpr-w2p5-6m37

Affected package: phpoffice/phpexcel

Affected version: <=1.8.2

Reported by:
GitHub