Show filters
16 Total Results
Displaying 11-16 of 16
Sort by:
Attacker Value
Unknown
CVE-2022-0085
Disclosure Date: June 28, 2022 (last updated February 24, 2025)
Server-Side Request Forgery (SSRF) in GitHub repository dompdf/dompdf prior to 2.0.0.
0
Attacker Value
Unknown
CVE-2022-28368
Disclosure Date: April 03, 2022 (last updated February 23, 2025)
Dompdf 1.2.1 allows remote code execution via a .php file in the src:url field of an @font-face Cascading Style Sheets (CSS) statement (within an HTML input file).
0
Attacker Value
Unknown
CVE-2014-5013
Disclosure Date: January 10, 2020 (last updated November 28, 2024)
DOMPDF before 0.6.2 allows remote code execution, a related issue to CVE-2014-2383.
0
Attacker Value
Unknown
CVE-2014-5012
Disclosure Date: January 10, 2020 (last updated November 28, 2024)
DOMPDF before 0.6.2 allows denial of service.
0
Attacker Value
Unknown
CVE-2014-5011
Disclosure Date: January 10, 2020 (last updated February 21, 2025)
DOMPDF before 0.6.2 allows Information Disclosure.
0
Attacker Value
Unknown
CVE-2014-2383
Disclosure Date: April 28, 2014 (last updated October 05, 2023)
dompdf.php in dompdf before 0.6.1, when DOMPDF_ENABLE_PHP is enabled, allows context-dependent attackers to bypass chroot protections and read arbitrary files via a PHP protocol and wrappers in the input_file parameter, as demonstrated by a php://filter/read=convert.base64-encode/resource in the input_file parameter.
0
