Share
## https://sploitus.com/exploit?id=AC70E947-11BE-5BFD-A66F-776227C60172
# CVE-2024-45427 Exploit Generator
This script generates a malicious Excel (.xlsx) file to exploit **CVE-2024-45427** in PhpSpreadsheet library (v3.7.0).

It injects an XSS payload into the sheet name by manipulating the raw XML, bypassing standard library validation checks.

## Usage
1. Edit `exploit.py` and set your `MY_IP` and `PORT`.
2. Run the script:
   ```bash
   python3 exploit.py
   ```
3. Start a listener:
   ```bash
   python3 -m http.server 8000
   ```
4. Upload `assignment_exploit.xlsx` to the target.

## Disclaimer
For educational use and authorized testing only.