dompdf Cyber Security Vulnerability Stats and Metrics

Improper Restriction of External Entities (XXE) Vulnerability

CVE-2021-3902

DomPDFDomPDF/domPDF9.8CRITICAL

DomPDF Vulnerability Allows for Remote Code Execution

CVE-2021-3838

DomPDFDomPDF/domPDF9.8CRITICAL

Potential Remote Code Execution Vulnerability in php-svg-lib Prior to Version 0.5.2

CVE-2024-25117

dompdfphp-svg-lib9.8CRITICAL

Dompdf possible DoS caused by infinite recursion when parsing SVG images

CVE-2023-50262

dompdfdompdf5.3MEDIUM

php-svg-lib possible DoS caused by infinite recursion when parsing SVG document

CVE-2023-50251

DomPDFPHP-svg-lib5.3MEDIUM

php-svg-lib unsafe attributes merge when parsing `use` tag

CVE-2023-50252

dompdfphp-svg-lib8.3HIGH

URI validation failure on SVG parsing. Bypass of CVE-2023-23924

CVE-2023-24813

DomPDFDomPDF10CRITICAL

URI validation failure on SVG parsing in Dompdf

CVE-2023-23924

DomPDFDomPDF👾🟡EPSS 53%10CRITICAL

Remote File Inclusion in Dompdf Versions Prior to 2.0.1

CVE-2022-41343

DomPDF ProjectDomPDF👾🟡EPSS 45%7.5HIGH

External Control of File Name or Path in dompdf/dompdf

CVE-2022-2400

DomPDFDomPDF/domPDF5.3MEDIUM

Server-Side Request Forgery (SSRF) in dompdf/dompdf

CVE-2022-0085

DomPDFDomPDF/domPDF3.7LOW

Remote Code Execution in Dompdf by DOM-based CSS Manipulation

CVE-2022-28368

DomPDF ProjectDomPDF👾🟡EPSS 72%9.8CRITICAL

Information Disclosure Vulnerability in Dompdf by Dominik Homberger

CVE-2014-5011

DomPDF ProjectDomPDF6.5MEDIUM

Denial of Service Vulnerability in DOMPDF Software by Dominik Homberger

CVE-2014-5012

DomPDF ProjectDomPDF6.5MEDIUM

Remote Code Execution in DOMPDF Prior to Version 0.6.2

CVE-2014-5013

DomPDF ProjectDomPDFEPSS 25%8.8HIGH

Arbitrary File Read Vulnerability in dompdf Product by Dompdf

CVE-2014-2383

DomPDFDomPDF👾🟡EPSS 54%

dompdf Summary

Vulnerability Published:

Sort By:

15 November 2024

Improper Restriction of External Entities (XXE) Vulnerability

DomPDF Vulnerability Allows for Remote Code Execution

21 February 2024

Potential Remote Code Execution Vulnerability in php-svg-lib Prior to Version 0.5.2

13 December 2023

Dompdf possible DoS caused by infinite recursion when parsing SVG images

12 December 2023

php-svg-lib possible DoS caused by infinite recursion when parsing SVG document

php-svg-lib unsafe attributes merge when parsing `use` tag

7 February 2023

URI validation failure on SVG parsing. Bypass of CVE-2023-23924

1 February 2023

URI validation failure on SVG parsing in Dompdf

25 September 2022

Remote File Inclusion in Dompdf Versions Prior to 2.0.1

18 July 2022

External Control of File Name or Path in dompdf/dompdf

28 June 2022

Server-Side Request Forgery (SSRF) in dompdf/dompdf

3 April 2022

Remote Code Execution in Dompdf by DOM-based CSS Manipulation

10 January 2020

Information Disclosure Vulnerability in Dompdf by Dominik Homberger

Denial of Service Vulnerability in DOMPDF Software by Dominik Homberger

Remote Code Execution in DOMPDF Prior to Version 0.6.2

28 April 2014

Arbitrary File Read Vulnerability in dompdf Product by Dompdf