Mpdf_project Mpdf

3 CVEs affecting Mpdf_project Mpdf. Latest disclosed: 2026-01-13. Critical: 1, High: 1.

Top CVEs affecting Mpdf_project Mpdf
CVESeverityScorePublishedSummary
CVE-2018-19047Critical10.02018-11-07mPDF through 7.1.6, if deployed as a web application that accepts arbitrary HTML, allows SSRF, as demonstrated by a '<img src="http://192.168' substring that t…
CVE-2019-1000005High8.82019-02-04mPDF version 7.1.7 and earlier contains a CWE-502: Deserialization of Untrusted Data vulnerability in getImage() method of Image/ImageProcessor class that can…
CVE-2022-50897Medium5.52026-01-13mPDF 7.0 contains a local file inclusion vulnerability that allows attackers to read arbitrary system files by manipulating annotation file parameters. Attacke…