CVE-2022-25646

Name of the Vulnerable Software and Affected Versions x-data-spreadsheet versions all

Description The issue is related to Cross-site Scripting (XSS) due to missing sanitization of values inserted into the cells. This allows for potential malicious script execution.

Recommendations For all versions, consider disabling the insertion of values into cells until a proper sanitization mechanism is implemented to prevent XSS attacks. Restrict access to sensitive data and functions that interact with cell values to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.