Improper Certificate Validation
Overview Affected versions of this package are vulnerable to Improper Certificate Validation due to the unsafe configuration of CURLOPTSSLVERIFYHOST and CURLOPTSSLVERIFYPEER. Note: This is only exploitable when using libcurl. Remediation Upgrade tecnickcom/tcpdf to version 6.8.0 or higher...