Mpdf

1 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest

CVE-2022-50897 MEDIUM POC This Month

mPDF 7.0 contains a local file inclusion vulnerability that allows attackers to read arbitrary system files by manipulating annotation file parameters. Attackers can generate URL-encoded or base64 payloads to include local files through crafted annotation content with file path specifications. [CVSS 5.5 MEDIUM]

LFI Mpdf

NVD Exploit-DB

CVSS 3.1

5.5

EPSS

0.0%

CVE-2022-50897

EPSS 0% CVSS 5.5

MEDIUM POC This Month

mPDF 7.0 contains a local file inclusion vulnerability that allows attackers to read arbitrary system files by manipulating annotation file parameters. Attackers can generate URL-encoded or base64 payloads to include local files through crafted annotation content with file path specifications. [CVSS 5.5 MEDIUM]

LFI Mpdf

NVD Exploit-DB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy