Guillaume Ayoub

8 exploits Active since Apr 2017
CVE-2017-8342 WRITEUP HIGH WRITEUP
Radicale < 1.1.2 and 2.x < 2.0.0rc2 - Timing Attack via htpasswd Authentication
Radicale before 1.1.2 and 2.x before 2.0.0rc2 is prone to timing oracles and simple brute-force attacks when using the htpasswd authentication method.
CVSS 8.1
CVE-2017-8342 WRITEUP HIGH WRITEUP
Radicale < 1.1.2 and 2.x < 2.0.0rc2 - Timing Attack via htpasswd Authentication
Radicale before 1.1.2 and 2.x before 2.0.0rc2 is prone to timing oracles and simple brute-force attacks when using the htpasswd authentication method.
CVSS 8.1
CVE-2023-27586 WRITEUP CRITICAL WRITEUP
CairoSVG < 2.7.0 - Server-Side Request Forgery via External Host Requests
CairoSVG is an SVG converter based on Cairo, a 2D graphics library. Prior to version 2.7.0, Cairo can send requests to external hosts when processing SVG files. A malicious actor could send a specially crafted SVG file that allows them to perform a server-side request forgery or denial of service. Version 2.7.0 disables CairoSVG's ability to access other files online by default.
CVSS 9.9
CVE-2026-31899 WRITEUP HIGH WRITEUP
CairoSVG < 2.9.0 - Denial of Service via Recursive <use> Element Amplification
CairoSVG is an SVG converter based on Cairo, a 2D graphics library. Prior to Kozea/CairoSVG has exponential denial of service via recursive <use> element amplification in cairosvg/defs.py. This causes CPU exhaustion from a small input.
CVSS 7.5
CVE-2021-21236 WRITEUP MEDIUM WRITEUP
CairoSVG < 2.5.1 - Regular Expression Denial of Service via Malicious SVG Processing
CairoSVG is a Python (pypi) package. CairoSVG is an SVG converter based on Cairo. In CairoSVG before version 2.5.1, there is a regular expression denial of service (REDoS) vulnerability. When processing SVG files, the python package CairoSVG uses two regular expressions which are vulnerable to Regular Expression Denial of Service (REDoS). If an attacker provides a malicious SVG, it can make cairosvg get stuck processing the file for a very long time. This is fixed in version 2.5.1. See Referenced GitHub advisory for more information.
CVSS 5.7
CVE-2023-27586 WRITEUP CRITICAL WRITEUP
CairoSVG < 2.7.0 - Server-Side Request Forgery via External Host Requests
CairoSVG is an SVG converter based on Cairo, a 2D graphics library. Prior to version 2.7.0, Cairo can send requests to external hosts when processing SVG files. A malicious actor could send a specially crafted SVG file that allows them to perform a server-side request forgery or denial of service. Version 2.7.0 disables CairoSVG's ability to access other files online by default.
CVSS 9.9
CVE-2024-28184 WRITEUP HIGH WRITEUP
WeasyPrint <61.2 - File/URL Injection
WeasyPrint helps web developers to create PDF documents. Since version 61.0, there's a vulnerability which allows attaching content of arbitrary files and URLs to a generated PDF document, even if `url_fetcher` is configured to prevent access to files and URLs. This vulnerability has been patched in version 61.2.
CVSS 7.4
CVE-2025-68616 WRITEUP HIGH WRITEUP
WeasyPrint < 68.0 - Server-Side Request Forgery via HTTP Redirect Bypass
WeasyPrint helps web developers to create PDF documents. Prior to version 68.0, a server-side request forgery (SSRF) protection bypass exists in WeasyPrint's `default_url_fetcher`. The vulnerability allows attackers to access internal network resources (such as `localhost` services or cloud metadata endpoints) even when a developer has implemented a custom `url_fetcher` to block such access. This occurs because the underlying `urllib` library follows HTTP redirects automatically without re-validating the new destination against the developer's security policy. Version 68.0 contains a patch for the issue.
CVSS 7.5