Unrated severityNVD Advisory· Published Aug 26, 2021· Updated Aug 4, 2024
CVE-2020-14161
CVE-2020-14161
Description
It is possible to inject HTML and/or JavaScript in the HTML to PDF conversion in Gotenberg through 6.2.1 via the /convert/html endpoint.
Affected products
2- Gotenberg/Gotenbergdescription
Patches
Vulnerability mechanics
References
3- github.com/gotenberg/gotenberg/issues/215mitrex_refsource_MISC
- github.com/gotenberg/gotenberg/pull/319mitrex_refsource_MISC
- github.com/thecodingmachine/gotenberg/releasesmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.