pycel@1.0b20 vulnerabilities

A library for compiling excel spreadsheets to python code & visualizing them as a graph

latest version

1.0b30

first published

6 years ago

latest version published

3 years ago

licenses detected

GPL-3.0
[0,)

View pycel package health on Snyk Advisor (opens in a new tab)

Go back to all versions of this package

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the pycel package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free

Vulnerability Vulnerable Version

Vulnerability	Vulnerable Version
C Arbitrary Code Injection pycel is an A library for compiling excel spreadsheets to python code & visualizing them as a graph Affected versions of this package are vulnerable to Arbitrary Code Injection through the code generation from a crafted formula in an Excel spreadsheet cell. An attacker can execute arbitrary code by inserting a malicious formula that triggers the execution of external commands. How to fix Arbitrary Code Injection? There is no fixed version for `pycel`.	[0,)

Arbitrary Code Injection

pycel is an A library for compiling excel spreadsheets to python code & visualizing them as a graph

Affected versions of this package are vulnerable to Arbitrary Code Injection through the code generation from a crafted formula in an Excel spreadsheet cell. An attacker can execute arbitrary code by inserting a malicious formula that triggers the execution of external commands.

How to fix Arbitrary Code Injection?

There is no fixed version for pycel.

[0,)

Go back to all versions of this package