Filtered by vendor Tcpdf Project Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2024-51058 1 Tcpdf Project 1 Tcpdf 2024-11-26 6.2 Medium
Local File Inclusion (LFI) vulnerability has been discovered in TCPDF 6.7.5. This vulnerability enables a user to read arbitrary files from the server's file system through <img> src tag, potentially exposing sensitive information.
CVE-2017-6100 1 Tcpdf Project 1 Tcpdf 2024-11-21 N/A
tcpdf before 6.2.0 uploads files from the server generating PDF-files to an external FTP.