2 matches found
CVE-2025-56590
CVE-2025-56590 affects the Apryse HTML2PDF SDK up to and including version 11.10, with a flaw in InsertFromURL() that could allow an attacker to execute arbitrary operating system commands on the local server. The issue is documented across multiple feeds (RH, NVD/NVD-entry, CVE lists) with consi...
CVE-2025-56589
The CVE-2025-56589 entry concerns the Apryse HTML2PDF SDK (versions through 11.6.0) with a vulnerability in InsertFromHtmlString() leading to Local File Inclusion (LFI) and Server-Side Request Forgery (SSRF). The flaws could allow an attacker to read server-local files or trigger arbitrary HTTP r...