VYPR

PDF Plugin

by Grails

CVEs (2)

  • CVE-2017-6344MedFeb 27, 2017
    risk 0.38cvss 5.9epss 0.01

    XML External Entity (XXE) vulnerability in Grails PDF Plugin 0.6 allows remote attackers to read arbitrary files via a crafted XML document.

  • CVE-2022-45448Sep 20, 2023
    risk 0.00cvss epss 0.00

    M4 PDF plugin for Prestashop sites, in its 3.2.3 version and before, is vulnerable to an arbitrary HTML Document crafting vulnerability. The resource /m4pdf/pdf.php uses templates to dynamically create documents. In the case that the template does not exist, the application will…