6 matches found
CVE-2025-55853
SoftVision webPDF before 10.0.2 is vulnerable to Server-Side Request Forgery SSRF. The PDF converter function does not check if internal or external resources are requested in the uploaded files and allows for protocols such as http:// and file:///. This allows an attacker to upload an XML or HTM...
CVE-2025-55853
SoftVision webPDF before 10.0.2 is vulnerable to Server-Side Request Forgery SSRF. The PDF converter function does not check if internal or external resources are requested in the uploaded files and allows for protocols such as http:// and file:///. This allows an attacker to upload an XML or HTM...
CVE-2025-55853
SoftVision webPDF prior to 10.0.2 is vulnerable to SSRF via its PDF converter, which does not validate whether requested resources are internal or external (http://, file://). An attacker can upload an XML/HTML file that, when rendered to PDF, enables internal port scanning and Local File Inclusi...
CVE-2025-55853
SoftVision webPDF before 10.0.2 is vulnerable to Server-Side Request Forgery SSRF. The PDF converter function does not check if internal or external resources are requested in the uploaded files and allows for protocols such as http:// and file:///. This allows an attacker to upload an XML or HTM...
SoftVision webPDF 安全漏洞
SoftVision webPDF is a PDF service platform provided by the German company SoftVision. Versions of SoftVision webPDF prior to 10.0.2 contained security vulnerabilities. These vulnerabilities stemmed from the PDF converter’s failure to check for resource requests in uploaded files, which could lea...
PT-2026-20836
Name of the Vulnerable Software and Affected Versions SoftVision webPDF versions prior to 10.0.2 Description The software contains a Server-Side Request Forgery SSRF issue. The PDF converter function does not validate requested resources in uploaded files, permitting protocols like http:// and...