Vulners
Lucene search
The vulnerability of the PHP library TCPDF, related to the failure to remove script-related HTML tags from web pages, allows attackers to perform cross-site scripting (XSS) attacks.
🗓️ 08 Sep 2025 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType 
bdu_fstec🔗 bdu.fstec.ru
| Reporter | Title | Published | Views | Family All 30 |
|---|---|---|---|---|
 | TCPDF 安全漏洞 | 15 Apr 202400:00 | – | cnnvd |
 | CVE-2024-32489 | 15 Apr 202400:00 | – | cve |
 | CVE-2024-32489 | 15 Apr 202400:00 | – | cvelist |
 | [SECURITY] [DLA 4199-1] tcpdf security update | 3 Jun 202515:22 | – | debian |
| [SECURITY] [DSA 5933-1] tcpdf security update | 1 Jun 202512:34 | – | debian |
 | CVE-2024-32489 | 15 Apr 202400:00 | – | debiancve |
 | Debian dla-4199 : php-tcpdf - security update | 3 Jun 202500:00 | – | nessus |
| Debian dsa-5933 : php-tcpdf - security update | 1 Jun 202500:00 | – | nessus |
| Linux Distros Unpatched Vulnerability : CVE-2024-32489 | 5 Mar 202500:00 | – | nessus |
 | TCPDF Cross-site Scripting vulnerability | 15 Apr 202406:30 | – | github |
10
Node
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
08 Sep 2025 00:00Current
CVSS 36.1
CVSS 26.4
EPSS0.00582