Description
An improper restriction of external entities (XXE) vulnerability in dompdf/dompdf's SVG parser allows for Server-Side Request Forgery (SSRF) and deserialization attacks. This issue affects all versions prior to 2.0.0. The vulnerability can be exploited even if the isRemoteEnabled option is set to false. It allows attackers to perform SSRF, disclose internal image files, and cause PHAR deserialization attacks.
References (2)
Core 2
Core References
Exploit, Issue Tracking, Patch, Third Party Advisory
https://huntr.com/bounties/a6071c07-806f-429a-8656-a4742e4191b1
Scores
CVSS v3
9.8
EPSS
0.0509
EPSS Percentile
89.8%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
yes
Technical Impact
total
Details
CWE
CWE-611
Status
published
Products (2)
dompdf/dompdf
0 - 2.0.0Packagist
dompdf_project/dompdf
< 2.0.0
Published
Nov 15, 2024
Tracked Since
Feb 18, 2026