## https://sploitus.com/exploit?id=AC70E947-11BE-5BFD-A66F-776227C60172
# CVE-2024-45427 Exploit Generator
This script generates a malicious Excel (.xlsx) file to exploit **CVE-2024-45427** in PhpSpreadsheet library (v3.7.0).
It injects an XSS payload into the sheet name by manipulating the raw XML, bypassing standard library validation checks.
## Usage
1. Edit `exploit.py` and set your `MY_IP` and `PORT`.
2. Run the script:
```bash
python3 exploit.py
```
3. Start a listener:
```bash
python3 -m http.server 8000
```
4. Upload `assignment_exploit.xlsx` to the target.
## Disclaimer
For educational use and authorized testing only.