Security Advisory

CVE-2022-50897

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-01-13 22:51:44

Last updated 2026-03-05 01:29:23

Assigner VulnCheck

State PUBLISHED

Description

mPDF 7.0 contains a local file inclusion vulnerability that allows attackers to read arbitrary system files by manipulating annotation file parameters. Attackers can generate URL-encoded or base64 payloads to include local files through crafted annotation content with file path specifications.

← Browse all CVEs View on cve.org ↗