[MEDIUM] PHPExcel vulnerable to XXE attacks through libxml

PKSA-mfm1-71w2-z7mz CVE-2014-2054 GHSA-28rm-rj57-qjpv

Affected package: phpoffice/phpexcel

Affected version: <1.8.0

Reported by:
GitHub