CyberSec.Space Logo
Back to CVE Browser

CVE-2018-19047

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0100%
EPSS Percentile5.15th
PublishedNov 7, 2018
Last ModifiedNov 21, 2024

Vulnerability Description

mPDF through 7.1.6, if deployed as a web application that accepts arbitrary HTML, allows SSRF, as demonstrated by a '<img src="http://192.168' substring that triggers a call to getImage in Image/ImageProcessor.php. NOTE: the software maintainer disputes this, stating "If you allow users to pass HTML without sanitising it, you're asking for trouble.

Affected Platforms (CPE)

📦
Mpdf Project

Mpdf

<= 7.1.6

References & Advisories

🔗 https://github.com/mpdf/mpdf/issues/867
🔗 https://github.com/mpdf/mpdf/issues/867

Related Vulnerabilities

CVE-2019-10000058.8

mPDF version 7.1.7 and earlier contains a CWE-502: Deserialization of Untrusted Data vulnerability in getImage() method of Image/I...

CVE-2011-52195.0

Directory traversal vulnerability in examples/show_code.php in mPDF 5.3 and earlier allows remote attackers to read arbitrary file...

CVE-2021-44164.3

The wp-mpdf plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 3.5.1. This is due ...

CVE-2018-261110.0

Vulnerability in the Sun ZFS Storage Appliance Kit (AK) component of Oracle Sun Systems Products Suite (subcomponent: Core Service...