Security Advisory

CVE-2024-28184

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-03-09 00:50:32
Last updated 2025-02-13 17:47:28
Assigner GitHub_M
State PUBLISHED

Description

WeasyPrint helps web developers to create PDF documents. Since version 61.0, theres a vulnerability which allows attaching content of arbitrary files and URLs to a generated PDF document, even if `url_fetcher` is configured to prevent access to files and URLs. This vulnerability has been patched in version 61.2.