Lucene search
PRIOn knowledge basePRION:CVE-2024-28184HistoryMar 09, 2024 - 1:15 a.m.
Design/Logic Flaw
2024-03-0901:15:00
PRIOn knowledge base
www.prio-n.com
12
weasyprint
pdf documents
vulnerability
patched
version 61.2
file content
0.0004 Low
EPSS
Percentile
15.8%
WeasyPrint helps web developers to create PDF documents. Since version 61.0, there’s a vulnerability which allows attaching content of arbitrary files and URLs to a generated PDF document, even if url_fetcher is configured to prevent access to files and URLs. This vulnerability has been patched in version 61.2.
Related
osv
osv
CVE-2024-28184
2024-03-09 01:15:07
WeasyPrint allows the attachment of arbitrary files and URLs to a PDF
2024-03-08 20:42:52
debiancve
debiancve
CVE-2024-28184
2024-03-09 01:15:07
nvd
nvd
CVE-2024-28184
2024-03-09 01:15:07
cve
cve
CVE-2024-28184
2024-03-09 01:15:07
nessus
nessus
Fedora 40 : weasyprint (2024-baa87269ba)
2024-04-29 00:00:00
cvelist
cvelist
github
github
WeasyPrint allows the attachment of arbitrary files and URLs to a PDF
2024-03-08 20:42:52
fedora
fedora
[SECURITY] Fedora 40 Update: weasyprint-61.2-1.fc40
2024-03-23 00:50:30
ubuntucve
ubuntucve
CVE-2024-28184
2024-03-09 00:00:00
veracode
veracode
Path Traversal
2024-03-11 05:53:42
openvas
openvas
Fedora: Security Advisory for weasyprint (FEDORA-2024-baa87269ba)
2024-03-25 00:00:00