CVE-2020-7790
This affects the package spatie/browsershot from 0.0.0. By specifying a URL in the file:// protocol an attacker is able to include arbitrary files in the resultant PDF.
5.3CVSS
5.2AI Score
0.001EPSS