Jump to content

Topic on Extension talk:CIForms

< Extension talk:CIForms

dompdf/dompdf SSRF issue

3 comments • 15:49, 28 July 2024 3 months ago

3

Taavi (talkcontribs)

Hi. CIForms currently has a Composer dependency on dompdf/dompdf 1.x which is affected by CVE-2022-0085, CVE-2022-41343, CVE-2023-23924 and CVE-2023-50262. Please consider upgrading to dompdf 2.x.

Reply Edited 12:19, 6 February 2024 9 months ago

Thomas-topway-it (talkcontribs)

thank you, I will do at the next update of the extension

Reply 13:25, 24 February 2024 8 months ago

Thomas-topway-it (talkcontribs)

@Taavi fixed in the latest version (1.3.2), thanks a lot!

Reply Edited 15:49, 28 July 2024 3 months ago

Reply to "dompdf/dompdf SSRF issue"

Retrieved from "https://www.mediawiki.org/wiki/Topic:Xyoogh60alv2ryl3"