nicolaasuni

10 exploits Active since Sep 2018
CVE-2018-17057 WRITEUP CRITICAL WRITEUP
TCPDF < 6.2.22 - Remote Code Execution via PHAR Deserialization
An issue was discovered in TCPDF before 6.2.22. Attackers can trigger deserialization of arbitrary data via the phar:// wrapper.
CVSS 9.8
CVE-2024-32489 WRITEUP MEDIUM WRITEUP
TCPDF < 6.7.4 - Cross-Site Scripting via HTML Syntax Mishandling
TCPDF before 6.7.4 mishandles calls that use HTML syntax.
CVSS 6.1
CVE-2024-51058 WRITEUP MEDIUM WRITEUP
TCPDF < 6.7.6 - Local File Inclusion via Image Tag
Local File Inclusion (LFI) vulnerability has been discovered in TCPDF 6.7.5. This vulnerability enables a user to read arbitrary files from the server's file system through <img> src tag, potentially exposing sensitive information.
CVSS 6.2
CVE-2024-32489 WRITEUP MEDIUM WRITEUP
TCPDF < 6.7.4 - Cross-Site Scripting via HTML Syntax Mishandling
TCPDF before 6.7.4 mishandles calls that use HTML syntax.
CVSS 6.1
CVE-2024-56519 WRITEUP HIGH WRITEUP
TCPDF < 6.8.0 - Cross-Site Scripting via SVG font-family Attribute
An issue was discovered in TCPDF before 6.8.0. setSVGStyles does not sanitize the SVG font-family attribute.
CVSS 7.5
CVE-2024-56520 WRITEUP HIGH WRITEUP
tc-lib-pdf-font <2.6.4 - Info Disclosure
An issue was discovered in tc-lib-pdf-font before 2.6.4, as used in TCPDF before 6.8.0 and other products. Fonts are mishandled, e.g., FontBBox for Type 1 and TrueType fonts is misparsed.
CVSS 7.3
CVE-2024-56520 WRITEUP HIGH WRITEUP
tc-lib-pdf-font <2.6.4 - Info Disclosure
An issue was discovered in tc-lib-pdf-font before 2.6.4, as used in TCPDF before 6.8.0 and other products. Fonts are mishandled, e.g., FontBBox for Type 1 and TrueType fonts is misparsed.
CVSS 7.3
CVE-2024-56521 WRITEUP CRITICAL WRITEUP
TCPDF < 6.8.0 - Improper Certificate Validation via libcurl
An issue was discovered in TCPDF before 6.8.0. If libcurl is used, CURLOPT_SSL_VERIFYHOST and CURLOPT_SSL_VERIFYPEER are set unsafely.
CVSS 9.8
CVE-2024-56522 WRITEUP HIGH WRITEUP
TCPDF < 6.8.0 - Type Confusion via Loose Hash Comparison
An issue was discovered in TCPDF before 6.8.0. unserializeTCPDFtag uses != (aka loose comparison) and does not use a constant-time function to compare TCPDF tag hashes.
CVSS 7.5
CVE-2024-56527 WRITEUP HIGH WRITEUP
TCPDF < 6.8.0 - Cross-Site Scripting via Error Function
An issue was discovered in TCPDF before 6.8.0. The Error function lacks an htmlspecialchars call for the error message.
CVSS 7.5