VYPR

Tcpdf

by Tcpdf Project

Source repositories

CVEs (2)

  • CVE-2024-22641HigMay 28, 2024
    risk 0.49cvss 7.5epss 0.01

    TCPDF version 6.6.5 and before is vulnerable to ReDoS (Regular Expression Denial of Service) if parsing an untrusted SVG file.

  • CVE-2017-6100HigFeb 23, 2017
    risk 0.49cvss 7.5epss 0.01

    tcpdf before 6.2.0 uploads files from the server generating PDF-files to an external FTP.