PyPI package
svglib
pkg:pypi/svglib
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2020-10799 | — | < 0.9.4 | 0.9.4 | Mar 20, 2020 | The svglib package through 0.9.3 for Python allows XXE attacks via an svg2rlg call. |
- CVE-2020-10799Mar 20, 2020affected < 0.9.4fixed 0.9.4
The svglib package through 0.9.3 for Python allows XXE attacks via an svg2rlg call.