Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2025-22131 PoC — Cross-Site Scripting (XSS) vulnerability in generateNavigation() function

Source
https://github.com/s0ck37/CVE-2025-22131-POC
Associated Vulnerability
Title:Cross-Site Scripting (XSS) vulnerability in generateNavigation() function (CVE-2025-22131)
Description:PhpSpreadsheet is a PHP library for reading and writing spreadsheet files. Cross-Site Scripting (XSS) vulnerability in the code which translates the XLSX file into a HTML representation and displays it in the response.
Description
POC for the vuln CVE-2025-22131
Readme
# CVE-2025-22131 POC
## CVE-2025-22131 XSS Exploit by s0ck37

![title](out.png)

Reference: https://sploitus.com/exploit?id=152DAC32-8330-54D6-A916-7FC36EAA38B7
File Snapshot

 [4.0K]  /data/pocs/cea9297438ef0c5473fe48c850d6c815f0b05aef
├── [1.0K]  generate.py
├── [127K]  out.png
├── [ 161]  README.md
└── [6.5K]  sample.xlsx

0 directories, 4 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →