VYPR

Maven package

org.apache.pdfbox/pdfbox-examples

pkg:maven/org.apache.pdfbox/pdfbox-examples

Vulnerabilities (2)

  • CVE-2026-33929MedApr 14, 2026
    affected >= 2.0.24, < 2.0.37fixed 2.0.37

    Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Apache PDFBox Examples. This issue affects the ExtractEmbeddedFiles example in Apache PDFBox: from 2.0.24 through 2.0.36, from 3.0.0 through 3.0.7. Users are recommended to update

  • CVE-2026-23907Mar 10, 2026
    affected >= 2.0.24, < 3.0.7fixed 3.0.7

    This issue affects the ExtractEmbeddedFiles example in Apache PDFBox: from 2.0.24 through 2.0.35, from 3.0.0 through 3.0.6. The ExtractEmbeddedFiles example contains a path traversal vulnerability (CWE-22) because the filename that is obtained from PDComplexFileSpecification