Calligraf0

**Name of the Vulnerable Software and Affected Versions** PhpSpreadsheet versions prior to 1.30.3 PhpSpreadsheet versions 2.0.0 through 2.1.14 PhpSpreadsheet versions 2.2.0 through 2.4.3 PhpSpreadsheet versions 3.3.0 through 3.10.3 PhpSpreadsheet versions 4.0.0 through 5.5.0 **Description** When the filename argument passed to the `IOFactory::load()` function is user-controlled, an attacker can provide a PHP stream wrapper path that bypasses the `is file()` check within the `File::assertFile()` function. The use of the `phar://` wrapper triggers the deserialization of PHAR metadata, which can lead to remote code execution if a suitable gadget chain is present in the application. Additionally, the `ftp://` and `ssh2.sftp://` wrappers can be exploited to perform server-side request forgery (SSRF), a technique where the attacker forces the server to make requests to an unintended location. **Recommendations** Update to version 1.30.3 for versions prior to 1.30.3. Update to version 2.1.15 for versions 2.0.0 through 2.1.14. Update to version 2.4.4 for versions 2.2.0 through 2.4.3. Update to version 3.10.4 for versions 3.3.0 through 3.10.3. Update to version 5.6.0 for versions 4.0.0 through 5.5.0. As a temporary mitigation, ensure that the filename argument passed to `IOFactory::load()` does not contain PHP stream wrappers by validating that the URL scheme is null or has a length of one character, or by processing the path with `realpath()` before verification.

**Name of the Vulnerable Software and Affected Versions** Khoj versions prior to 1.15.0 **Description** The Automation feature in Khoj allows users to insert arbitrary HTML inside task instructions, resulting in a Stored XSS. The `q` parameter for the "/api/automation" endpoint does not get correctly sanitized when rendered on the page, allowing users to inject arbitrary HTML/JS. **Recommendations** For versions prior to 1.15.0, update to version 1.15.0 to fix the vulnerability. As a temporary workaround, consider restricting access to the `/api/automation` endpoint until the update is applied. Additionally, avoid using the `q` parameter in the affected API endpoint until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Khoj versions prior to 1.13.0 **Description** Khoj is an application that creates personal AI agents. The Khoj Obsidian, Desktop, and Web clients inadequately sanitize the AI model's response and user inputs. This can trigger Cross Site Scripting (XSS) via Prompt Injection from untrusted documents either indexed by the user on Khoj or read by Khoj from the internet when the user invokes the "online" command. **Recommendations** For versions prior to 1.13.0, update to version 1.13.0 to resolve the issue. As a temporary workaround, consider restricting the use of the /online command until the update is applied. Additionally, avoid using untrusted documents with the AI model to minimize the risk of exploitation.