Merge remote-tracking branch 'origin/master'

# Conflicts: # Classes/PHPExcel/Calculation/Functions.php # Classes/PHPExcel/Worksheet.php # Classes/PHPExcel/Worksheet/CellIterator.php
Fix and improve XXE security scanning for XML-based Readers
2025-04-04 22:03:37 +03:00 · 2018-11-23 00:07:24 +01:00 · 2018-11-22 23:50:50 +01:00 · 2015-05-05 01:10:25 +01:00 · 2015-05-04 23:40:44 +01:00 · 2015-05-04 23:34:36 +01:00
4 changed files with 23 additions and 11 deletions
--- a/Classes/PHPExcel/Calculation/Functions.php
+++ b/Classes/PHPExcel/Calculation/Functions.php
@ -518,15 +518,14 @@ class PHPExcel_Calculation_Functions
    }


-    /**
-     * VERSION
-     *
-     * @return    string    Version information
-     */
-    public static function VERSION()
-    {
-        return 'PHPExcel ##VERSION##, ##DATE##';
-    }
+	/**
+	 * VERSION
+	 *
+	 * @return	string	Version information
+	 */
+	public static function VERSION() {
+		return 'PHPExcel 1.8.2, 2018-11-22';
+	}	//	function VERSION()


    /**
--- a/Classes/PHPExcel/Reader/Abstract.php
+++ b/Classes/PHPExcel/Reader/Abstract.php
@ -269,6 +269,18 @@ abstract class PHPExcel_Reader_Abstract implements PHPExcel_Reader_IReader
     */
    public function securityScan($xml)
    {
+        $pattern = '/encoding="(.*?)"/';
+        $result = preg_match($pattern, $xml, $matches);
+        if ($result) {
+            $charset = $matches[1];
+        } else {
+            $charset = 'UTF-8';
+        }
+
+        if ($charset !== 'UTF-8') {
+            $xml = mb_convert_encoding($xml, 'UTF-8', $charset);
+        }
+
        $pattern = '/\\0?' . implode('\\0?', str_split('<!DOCTYPE')) . '\\0?/';
        if (preg_match($pattern, $xml)) {
            throw new PHPExcel_Reader_Exception('Detected use of ENTITY in XML, spreadsheet file load() aborted to prevent XXE/XEE attacks');
--- a/Classes/PHPExcel/Worksheet/CellIterator.php
+++ b/Classes/PHPExcel/Worksheet/CellIterator.php
@ -70,7 +70,7 @@ abstract class PHPExcel_Worksheet_CellIterator
     * Validate start/end values for "IterateOnlyExistingCells" mode, and adjust if necessary
     *
     * @throws PHPExcel_Exception
-     */
+	 */
    abstract protected function adjustForExistingOnlyRange();

    /**
--- a/changelog.txt
+++ b/changelog.txt
@ -23,7 +23,8 @@
 **************************************************************************************


-Planned for 1.8.2
+2018-11-22 (v1.8.2):
+- Security  (MBaker)                            - Fix and improve XXE security scanning for XML-based Readers
 - Bugfix:   (MBaker)                            - Fix to getCell() method when cell reference includes a worksheet reference
 - Bugfix:   (ncrypthic)       Work Item GH-570  - Ignore inlineStr type if formula element exists
 - Bugfix:   (hernst42)        Work Item GH-709  - Fixed missing renames of writeRelationShip (from _writeRelationShip)
Author	SHA1	Message	Date
MarkBaker	1441011fb7	Merge remote-tracking branch 'origin/master' # Conflicts: # Classes/PHPExcel/Calculation/Functions.php # Classes/PHPExcel/Worksheet.php # Classes/PHPExcel/Worksheet/CellIterator.php	2018-11-23 00:07:24 +01:00
MarkBaker	2b60157497	Fix and improve XXE security scanning for XML-based Readers	2018-11-22 23:50:50 +01:00
MarkBaker	049e85ae98	Remove spurious setLineEnding() from csv example	2015-05-05 01:10:25 +01:00
MarkBaker	8d3548adb0	New calculation example with cyclic formula	2015-05-04 23:40:44 +01:00
MarkBaker	0cdda0dc42	Fix to case-sensitivity in getCell() method when using a worksheet!cell reference	2015-05-04 23:34:36 +01:00
MarkBaker	372c7cbb69	Merge branch 'master' of https://github.com/PHPOffice/PHPExcel	2015-05-01 08:00:55 +01:00
MarkBaker	c9f2ee522b	Abstract function PHPExcel_Worksheet_CellIterator::adjustForExistingOnlyRange() cannot contain body	2015-05-01 08:00:24 +01:00
MarkBaker	a4d7997356	version function	2015-04-30 23:55:27 +01:00