https://www.notsosecure.com/data-exfiltration-formula-injection/ Folks at my company did a research around formula injection on linux and web based spread sheet solutions specifically libreoffice in linux and google sheets on web. The results are available on the linked blog post.
https://www.notsosecure.com/data-exfiltration-formula-injection/
Note: If it is not clear from first point, its a self promotion of my own company. However i assume the content is worth the share.