VYPR

PyPI package

pikepdf

pkg:pypi/pikepdf

Vulnerabilities (1)

  • CVE-2021-29421Apr 1, 2021
    affected >= 1.3.0, < 2.10.0fixed 2.10.0

    models/metadata.py in the pikepdf package 1.3.0 through 2.9.2 for Python allows XXE when parsing XMP metadata entries.