Vulnerability Details CVE-2024-1647
Pyhtml2pdf version 0.0.6 allows an external attacker to remotely obtain
arbitrary local files. This is possible because the application does not
validate the HTML content entered by the user.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 40.5%
CVSS Severity
CVSS v3 Score 7.5
References
Products affected by CVE-2024-1647
-
cpe:2.3:a:kumaf:pyhtml2pdf:0.0.6