Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/03 6:6 p.m.12 views

CVE-2025-46568

Stirling-PDF is a locally hosted web application that allows you to perform various operations on PDF files. Prior to version 0.45.0, Stirling-PDF is vulnerable to SSRF-induced arbitrary file read. WeasyPrint redefines a set of HTML tags, including img, embed, object, and others. The references t...

8.7CVSS6.7AI score0.00417EPSS
Exploits1References1
Circl
Circl
added 2025/05/01 8:0 p.m.9 views

CVE-2025-46568

creationtimestamp| type| source ---|---|--- 2025-05-01 20:00:50+00:00| published-proof-of-concept| Telegram/QFVP5TcYkEi5fC3DYhpbJ3tJ8sPusYmL1ImuYd1RRjGW6cE 2025-05-02 14:15:53+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/14487 2025-06-21 19:52:27+00:00| published-proof-of-concept|...

8.7CVSS4.8AI score0.00417EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/05/01 5:20 p.m.29 views

CVE-2025-46568 Stirling-PDF Server-Side Request Forgery (SSRF)-Induced Arbitrary File Read Vulnerability

Stirling-PDF is a locally hosted web application that allows you to perform various operations on PDF files. Prior to version 0.45.0, Stirling-PDF is vulnerable to SSRF-induced arbitrary file read. WeasyPrint redefines a set of HTML tags, including img, embed, object, and others. The references t...

8.7CVSS0.00417EPSS
Exploits1References2
CVE
CVE
added 2025/05/01 5:20 p.m.70 views

CVE-2025-46568

CVE-2025-46568 affects Stirling-PDF prior to version 0.45.0. The vulnerability arises from SSRF-induced arbitrary file read due to WeasyPrint redefining HTML tags (e.g., img, embed, object). References to internal files allow attaching content from any webpage or local file to a PDF, enabling an ...

8.7CVSS6.1AI score0.00417EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder