VYPR

RubyGems package

mpxj

pkg:gem/mpxj

Vulnerabilities (1)

  • CVE-2024-49771MedOct 28, 2024
    affected >= 8.3.5, < 13.5.1fixed 13.5.1

    MPXJ is an open source library to read and write project plans from a variety of file formats and databases. The patch for the historical vulnerability CVE-2020-35460 in MPXJ is incomplete as there is still a possibility that a malicious path could be constructed which would not