Lucene search
K

323 matches found

Github Security Blog
Github Security Blog
added 2022/06/29 12:0 a.m.28 views

Server-Side Request Forgery in dompdf/dompdf

Server-Side Request Forgery SSRF in GitHub repository dompdf/dompdf prior to 2.0.0...

5.3CVSS2.9AI score0.00953EPSS
Exploits1References5Affected Software1
Veracode
Veracode
added 2022/06/28 6:50 p.m.22 views

Server-Side Request Forgery

Dompdf is vulnerable to Information disclosure. The vulnerability exists when reading files using filegetcontents over http. If theres 302 response, it will allow a redirect to a blacklisted site...

5.3CVSS5.3AI score0.00953EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2022/06/28 3:15 p.m.19 views

CVE-2022-0085

Server-Side Request Forgery SSRF in GitHub repository dompdf/dompdf prior to 2.0.0...

5.3CVSS0.00953EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2022/06/28 3:15 p.m.8 views

CVE-2022-0085

Server-Side Request Forgery SSRF in GitHub repository dompdf/dompdf prior to 2.0.0...

5.3CVSS5.5AI score0.00953EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2022/06/28 3:15 p.m.27 views

CVE-2022-0085

Server-Side Request Forgery SSRF in GitHub repository dompdf/dompdf prior to 2.0.0...

5.3CVSS5.9AI score0.00953EPSS
Exploits1References3
Prion
Prion
added 2022/06/28 3:15 p.m.16 views

Server side request forgery (ssrf)

Server-Side Request Forgery SSRF in GitHub repository dompdf/dompdf prior to 2.0.0...

4.3CVSS5.2AI score0.00953EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2022/06/28 3:0 p.m.32 views

CVE-2022-0085 Server-Side Request Forgery (SSRF) in dompdf/dompdf

Server-Side Request Forgery SSRF in GitHub repository dompdf/dompdf prior to 2.0.0...

3.7CVSS5.6AI score0.00953EPSS
Exploits1References2
CVE
CVE
added 2022/06/28 3:0 p.m.106 views

CVE-2022-0085

CVE-2022-0085 describes a Server-Side Request Forgery (SSRF) in the GitHub repository dompdf/dompdf affecting versions before 2.0.0. The connected documents confirm the issue is an SSRF vulnerability in dompdf/dompdf and indicate the affected scope is pre-2.0.0. No exploit details, attack vectors...

5.3CVSS4.7AI score0.00953EPSS
Exploits1References2Affected Software1
Debian CVE
Debian CVE
added 2022/06/28 3:0 p.m.39 views

CVE-2022-0085

Server-Side Request Forgery SSRF in GitHub repository dompdf/dompdf prior to 2.0.0...

5.3CVSS4.2AI score0.00953EPSS
Exploits1
OSV
OSV
added 2022/06/28 3:0 p.m.22 views

CVE-2022-0085 Server-Side Request Forgery (SSRF) in dompdf/dompdf

Server-Side Request Forgery SSRF in GitHub repository dompdf/dompdf prior to 2.0.0...

3.7CVSS4.5AI score0.00953EPSS
Exploits1References4
CNNVD
CNNVD
added 2022/06/28 12:0 a.m.4 views

Dompdf 代码问题漏洞

Dompdf is an HTML to PDF converter. A code issue vulnerability exists in Dompdf versions prior to 2.0.0 that stems from server-side request forgery SSRF...

5.3CVSS5.2AI score0.00953EPSS
Exploits1References3
Friends Of PHP
Friends Of PHP
added 2022/06/23 1:55 p.m.22 views

Server-Side Request Forgery in dompdf/dompdf

Server-Side Request Forgery SSRF in GitHub repository dompdf/dompdf prior to 2.0.0...

5.3CVSS5.2AI score0.00953EPSS
Exploits1Affected Software1
Positive Technologies
Positive Technologies
added 2022/06/18 12:0 a.m.2 views

PT-2023-12337

Name of the Vulnerable Software and Affected Versions DomPDF versions prior to 2.0.0 Description The issue is related to PHAR deserialization due to a lack of checking on the protocol before passing it into the file get contents function. An attacker who can upload files of any type to the server...

9.8CVSS8.7AI score0.04556EPSS
Exploits4References57
OSV
OSV
added 2022/05/17 7:57 p.m.16 views

GHSA-JWF8-MJJ8-R8HQ DOMPDF Information Disclosure

DOMPDF before 0.6.2 allows Information Disclosure...

6.5CVSS7.2AI score0.01628EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2022/05/17 7:57 p.m.25 views

DOMPDF Information Disclosure

DOMPDF before 0.6.2 allows Information Disclosure...

6.5CVSS6.9AI score0.01628EPSS
Exploits0References6Affected Software1
Github Security Blog
Github Security Blog
added 2022/05/17 7:57 p.m.24 views

DOMPDF Remote Code Execution

DOMPDF before 0.6.2 allows remote code execution, a related issue to CVE-2014-2383...

8.8CVSS7.4AI score0.04556EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2022/05/17 7:57 p.m.18 views

GHSA-JJWJ-W3GC-GCW4 DOMPDF Remote Code Execution

DOMPDF before 0.6.2 allows remote code execution, a related issue to CVE-2014-2383...

8.8CVSS8.7AI score0.04556EPSS
Exploits0References4
OSV
OSV
added 2022/05/17 7:57 p.m.16 views

GHSA-Q83C-64C9-C42M DOMPDF denial of service vulnerability

DOMPDF before 0.6.2 allows denial of service...

6.5CVSS7.1AI score0.01337EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2022/05/17 7:57 p.m.25 views

DOMPDF denial of service vulnerability

DOMPDF before 0.6.2 allows denial of service...

6.5CVSS7.1AI score0.01337EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2022/05/17 5:29 a.m.21 views

DOMPDF Remote File Inclusion Vulnerability

PHP remote file inclusion vulnerability in dompdf.php in dompdf 0.6.0 beta1 allows remote attackers to execute arbitrary PHP code via a URL in the inputfile parameter...

7.5CVSS7.8AI score0.05367EPSS
Exploits1References7Affected Software1
Rows per page
Query Builder