BugTraq
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
 
CVE-2014-2383 - Arbitrary file read in dompdf Apr 23 2014 10:29AM
Portcullis Advisories (advisories portcullis-security com)
Vulnerability title: Arbitrary file read in dompdf
CVE: CVE-2014-2383
Vendor: dompdf
Product: dompdf
Affected version: v0.6.0
Fixed version: v0.6.1 (partial fix)
Reported by: Alejo Murillo Moyas

Details:
An arbitrary file read vulnerability is present on dompdf.php file that
allows remote or local ...

[ more ]  
 

Privacy Statement
Copyright 2010, SecurityFocus