what happens is that you can inject code because the excel interprets the tag <html> for example if pasted into the excel <h1> hello </ h1> that it does is show the text in bold .. does nothing, but if pasted <html> <h1> hello </ h1> appears in bold text. Juan Pablo Lopez Yacubian