You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
There is a bug in the fetching of images which allows rendering local files into the PDF document. To exploit this issue an attacker needs to control the src attribute of an img tag.
mPDF version
8.1.2, 8.0.17
PHP Version and environment (server type, cli provider etc., enclosing libraries and their respective versions)
PHP 8.1, Ubuntu server
Reproducible PHP+CSS+HTML snippet suffering by the error
Guidelines
Description of the bug
There is a bug in the fetching of images which allows rendering local files into the PDF document. To exploit this issue an attacker needs to control the src attribute of an img tag.
mPDF version
8.1.2, 8.0.17
PHP Version and environment (server type, cli provider etc., enclosing libraries and their respective versions)
PHP 8.1, Ubuntu server
Reproducible PHP+CSS+HTML snippet suffering by the error
For further details, please reach out to johannes@cure53.de.
The text was updated successfully, but these errors were encountered: