Moderate severityNVD Advisory· Published Dec 27, 2024· Updated Nov 3, 2025
CVE-2024-56527
CVE-2024-56527
Description
An issue was discovered in TCPDF before 6.8.0. The Error function lacks an htmlspecialchars call for the error message.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
tecnickcom/tcpdfPackagist | < 6.8.0 | 6.8.0 |
Affected products
2- tecnick/tcpdfv5Range: 0
Patches
Vulnerability mechanics
References
7- github.com/advisories/GHSA-qx95-cwh6-9mvqghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2024-56527ghsaADVISORY
- andrea0.medium.com/analysis-of-cve-2024-56527-dbdab6962addghsaWEB
- github.com/tecnickcom/TCPDF/commit/11778aaa2d9e30a9ae1c1ee97ff349344f0ad6e1ghsaWEB
- github.com/tecnickcom/TCPDF/compare/6.7.8...6.8.0ghsaWEB
- lists.debian.org/debian-lts-announce/2025/06/msg00004.htmlghsaWEB
- tcpdf.orgghsaWEB
News mentions
0No linked articles in our index yet.