CVE-2024-1647
CVE-2024-1647 affects Pyhtml2pdf 0.0.6. The vulnerability arises from not validating user-provided HTML content, allowing an external attacker to remotely read arbitrary local files via a server-side XSS path. Impact is described as local file access with high confidentiality impact; CVSS: NETWOR...