[MEDIUM] PhpSpreadsheet HTML writer is vulnerable to Cross-Site Scripting via JavaScript hyperlinks

PKSA-b7bk-6mnf-vvf4 CVE-2024-45292 GHSA-r8w8-74ww-j4wh

Affected package: phpoffice/phpexcel

Affected version: <=1.8.2

Reported by:
GitHub