323 matches found
Server-Side Request Forgery in dompdf/dompdf
Server-Side Request Forgery SSRF in GitHub repository dompdf/dompdf prior to 2.0.0...
Server-Side Request Forgery
Dompdf is vulnerable to Information disclosure. The vulnerability exists when reading files using filegetcontents over http. If theres 302 response, it will allow a redirect to a blacklisted site...
CVE-2022-0085
Server-Side Request Forgery SSRF in GitHub repository dompdf/dompdf prior to 2.0.0...
CVE-2022-0085
Server-Side Request Forgery SSRF in GitHub repository dompdf/dompdf prior to 2.0.0...
CVE-2022-0085
Server-Side Request Forgery SSRF in GitHub repository dompdf/dompdf prior to 2.0.0...
Server side request forgery (ssrf)
Server-Side Request Forgery SSRF in GitHub repository dompdf/dompdf prior to 2.0.0...
CVE-2022-0085 Server-Side Request Forgery (SSRF) in dompdf/dompdf
Server-Side Request Forgery SSRF in GitHub repository dompdf/dompdf prior to 2.0.0...
CVE-2022-0085
CVE-2022-0085 describes a Server-Side Request Forgery (SSRF) in the GitHub repository dompdf/dompdf affecting versions before 2.0.0. The connected documents confirm the issue is an SSRF vulnerability in dompdf/dompdf and indicate the affected scope is pre-2.0.0. No exploit details, attack vectors...
CVE-2022-0085
Server-Side Request Forgery SSRF in GitHub repository dompdf/dompdf prior to 2.0.0...
CVE-2022-0085 Server-Side Request Forgery (SSRF) in dompdf/dompdf
Server-Side Request Forgery SSRF in GitHub repository dompdf/dompdf prior to 2.0.0...
Dompdf 代码问题漏洞
Dompdf is an HTML to PDF converter. A code issue vulnerability exists in Dompdf versions prior to 2.0.0 that stems from server-side request forgery SSRF...
Server-Side Request Forgery in dompdf/dompdf
Server-Side Request Forgery SSRF in GitHub repository dompdf/dompdf prior to 2.0.0...
PT-2023-12337
Name of the Vulnerable Software and Affected Versions DomPDF versions prior to 2.0.0 Description The issue is related to PHAR deserialization due to a lack of checking on the protocol before passing it into the file get contents function. An attacker who can upload files of any type to the server...
GHSA-JWF8-MJJ8-R8HQ DOMPDF Information Disclosure
DOMPDF before 0.6.2 allows Information Disclosure...
DOMPDF Information Disclosure
DOMPDF before 0.6.2 allows Information Disclosure...
DOMPDF Remote Code Execution
DOMPDF before 0.6.2 allows remote code execution, a related issue to CVE-2014-2383...
GHSA-JJWJ-W3GC-GCW4 DOMPDF Remote Code Execution
DOMPDF before 0.6.2 allows remote code execution, a related issue to CVE-2014-2383...
GHSA-Q83C-64C9-C42M DOMPDF denial of service vulnerability
DOMPDF before 0.6.2 allows denial of service...
DOMPDF denial of service vulnerability
DOMPDF before 0.6.2 allows denial of service...
DOMPDF Remote File Inclusion Vulnerability
PHP remote file inclusion vulnerability in dompdf.php in dompdf 0.6.0 beta1 allows remote attackers to execute arbitrary PHP code via a URL in the inputfile parameter...