{"url":"http://public2.vulnerablecode.io/api/packages/547839?format=json","purl":"pkg:composer/dompdf/dompdf@0.8.3","type":"composer","namespace":"dompdf","name":"dompdf","version":"0.8.3","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/158756?format=json","vulnerability_id":"VCID-3y27-a2g7-vbff","summary":"DomPDF before version 2.0.0 is vulnerable to PHAR deserialization due to a lack of checking on the protocol before passing it into the file_get_contents() function. An attacker who can upload files of any type to the server can pass in the phar:// protocol to unserialize the uploaded file and instantiate arbitrary PHP objects. This can lead to remote code execution, especially when DOMPdf is used with frameworks with documented POP chains like Laravel or vulnerable developer code.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-3838","reference_id":"","reference_type":"","scores":[{"value":"0.06926","scoring_system":"epss","scoring_elements":"0.91637","published_at":"2026-06-12T12:55:00Z"},{"value":"0.06926","scoring_system":"epss","scoring_elements":"0.91642","published_at":"2026-06-14T12:55:00Z"},{"value":"0.06926","scoring_system":"epss","scoring_elements":"0.91608","published_at":"2026-06-11T12:55:00Z"},{"value":"0.06926","scoring_system":"epss","scoring_elements":"0.91645","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-3838"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3838","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3838"},{"reference_url":"https://github.com/dompdf/dompdf","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/dompdf/dompdf"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2021-3838","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2021-3838"},{"reference_url":"https://huntr.com/bounties/0bdddc12-ff67-4815-ab9f-6011a974f48e","reference_id":"0bdddc12-ff67-4815-ab9f-6011a974f48e","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-11-18T14:40:28Z/"}],"url":"https://huntr.com/bounties/0bdddc12-ff67-4815-ab9f-6011a974f48e"},{"reference_url":"https://github.com/dompdf/dompdf/commit/99aeec1efec9213e87098d42eb09439e7ee0bb6a","reference_id":"99aeec1efec9213e87098d42eb09439e7ee0bb6a","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-11-18T14:40:28Z/"}],"url":"https://github.com/dompdf/dompdf/commit/99aeec1efec9213e87098d42eb09439e7ee0bb6a"},{"reference_url":"https://github.com/advisories/GHSA-577p-7j7h-2jgf","reference_id":"GHSA-577p-7j7h-2jgf","reference_type":"","scores":[{"value":"CRITICAL","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-577p-7j7h-2jgf"},{"reference_url":"https://usn.ubuntu.com/6277-1/","reference_id":"USN-6277-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6277-1/"},{"reference_url":"https://usn.ubuntu.com/6277-2/","reference_id":"USN-6277-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6277-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/25093?format=json","purl":"pkg:composer/dompdf/dompdf@2.0.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-6uwe-wg7h-4uck"},{"vulnerability":"VCID-9wzq-4yc6-17d4"},{"vulnerability":"VCID-wghv-pf4e-w3by"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/dompdf/dompdf@2.0.0"}],"aliases":["CVE-2021-3838","GHSA-577p-7j7h-2jgf"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-3y27-a2g7-vbff"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/172161?format=json","vulnerability_id":"VCID-6uwe-wg7h-4uck","summary":"registerFont in FontMetrics.php in Dompdf before 2.0.1 allows remote file inclusion because a URI validation failure does not halt font registration, as demonstrated by a @font-face rule.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-41343","reference_id":"","reference_type":"","scores":[{"value":"0.54023","scoring_system":"epss","scoring_elements":"0.98069","published_at":"2026-06-14T12:55:00Z"},{"value":"0.54023","scoring_system":"epss","scoring_elements":"0.98068","published_at":"2026-06-12T12:55:00Z"},{"value":"0.54023","scoring_system":"epss","scoring_elements":"0.9806","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-41343"},{"reference_url":"https://github.com/dompdf/dompdf","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/dompdf/dompdf"},{"reference_url":"https://github.com/dompdf/dompdf/commit/66431c58017d5b1bdb9f6f772b9fbbc5e3d38dc2","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/dompdf/dompdf/commit/66431c58017d5b1bdb9f6f772b9fbbc5e3d38dc2"},{"reference_url":"https://tantosec.com/blog/cve-2022-41343","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://tantosec.com/blog/cve-2022-41343"},{"reference_url":"https://github.com/dompdf/dompdf/issues/2994","reference_id":"2994","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-22T14:40:39Z/"}],"url":"https://github.com/dompdf/dompdf/issues/2994"},{"reference_url":"https://github.com/dompdf/dompdf/pull/2995","reference_id":"2995","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-22T14:40:39Z/"}],"url":"https://github.com/dompdf/dompdf/pull/2995"},{"reference_url":"https://tantosec.com/blog/cve-2022-41343/","reference_id":"cve-2022-41343","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-22T14:40:39Z/"}],"url":"https://tantosec.com/blog/cve-2022-41343/"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-41343","reference_id":"CVE-2022-41343","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-41343"},{"reference_url":"https://github.com/FriendsOfPHP/security-advisories/blob/master/dompdf/dompdf/CVE-2022-41343.yaml","reference_id":"CVE-2022-41343.YAML","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/FriendsOfPHP/security-advisories/blob/master/dompdf/dompdf/CVE-2022-41343.yaml"},{"reference_url":"https://github.com/advisories/GHSA-6x28-7h8c-chx4","reference_id":"GHSA-6x28-7h8c-chx4","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-6x28-7h8c-chx4"},{"reference_url":"https://github.com/dompdf/dompdf/releases/tag/v2.0.1","reference_id":"v2.0.1","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-22T14:40:39Z/"}],"url":"https://github.com/dompdf/dompdf/releases/tag/v2.0.1"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/27082?format=json","purl":"pkg:composer/dompdf/dompdf@2.0.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-9wzq-4yc6-17d4"},{"vulnerability":"VCID-pxt1-z2yg-43cf"},{"vulnerability":"VCID-wghv-pf4e-w3by"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/dompdf/dompdf@2.0.1"}],"aliases":["CVE-2022-41343","GHSA-6x28-7h8c-chx4"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6uwe-wg7h-4uck"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/218761?format=json","vulnerability_id":"VCID-9wzq-4yc6-17d4","summary":"Dompdf is an HTML to PDF converter for PHP. When parsing SVG images Dompdf performs an initial validation to ensure that paths within the SVG are allowed. One of the validations is that the SVG document does not reference itself. However, prior to version 2.0.4, a recursive chained using two or more SVG documents is not correctly validated. Depending on the system configuration and attack pattern this could exhaust the memory available to the executing process and/or to the server itself.  php-svg-lib, when run in isolation, does not support SVG references for `image` elements. However, when used in combination with Dompdf, php-svg-lib will process SVG images referenced by an `image` element. Dompdf currently includes validation to prevent self-referential `image` references, but a chained reference is not checked. A malicious actor may thus trigger infinite recursion by chaining references between two or more SVG images.  When Dompdf parses a malicious payload, it will crash due after exceeding the allowed execution time or memory usage. An attacker sending multiple request to a system can potentially cause resource exhaustion to the point that the system is unable to handle incoming request.  Version 2.0.4 contains a fix for this issue.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-50262","reference_id":"","reference_type":"","scores":[{"value":"0.06147","scoring_system":"epss","scoring_elements":"0.91013","published_at":"2026-06-11T12:55:00Z"},{"value":"0.06147","scoring_system":"epss","scoring_elements":"0.91044","published_at":"2026-06-12T12:55:00Z"},{"value":"0.06147","scoring_system":"epss","scoring_elements":"0.9105","published_at":"2026-06-13T12:55:00Z"},{"value":"0.06147","scoring_system":"epss","scoring_elements":"0.91049","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-50262"},{"reference_url":"https://github.com/dompdf/dompdf","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/dompdf/dompdf"},{"reference_url":"https://github.com/dompdf/dompdf/blob/v2.0.3/src/Image/Cache.php#L136-L153","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/dompdf/dompdf/blob/v2.0.3/src/Image/Cache.php#L136-L153"},{"reference_url":"https://github.com/dompdf/dompdf/commit/41cbac16f3cf56affa49f06e8dae66d0eac2b593","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/dompdf/dompdf/commit/41cbac16f3cf56affa49f06e8dae66d0eac2b593"},{"reference_url":"https://github.com/dompdf/dompdf/security/advisories/GHSA-3qx2-6f78-w2j2","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/dompdf/dompdf/security/advisories/GHSA-3qx2-6f78-w2j2"},{"reference_url":"https://github.com/FriendsOfPHP/security-advisories/blob/master/dompdf/dompdf/CVE-2023-50262.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/FriendsOfPHP/security-advisories/blob/master/dompdf/dompdf/CVE-2023-50262.yaml"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2023-50262","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2023-50262"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1058793","reference_id":"1058793","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1058793"},{"reference_url":"https://github.com/advisories/GHSA-3qx2-6f78-w2j2","reference_id":"GHSA-3qx2-6f78-w2j2","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-3qx2-6f78-w2j2"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/380147?format=json","purl":"pkg:composer/dompdf/dompdf@2.0.4","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-wghv-pf4e-w3by"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/dompdf/dompdf@2.0.4"}],"aliases":["CVE-2023-50262","GHSA-3qx2-6f78-w2j2"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9wzq-4yc6-17d4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/209170?format=json","vulnerability_id":"VCID-euye-hzm8-wkff","summary":"External Control of File Name or Path in GitHub repository dompdf/dompdf prior to 2.0.0.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-2400","reference_id":"","reference_type":"","scores":[{"value":"0.00306","scoring_system":"epss","scoring_elements":"0.54378","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00306","scoring_system":"epss","scoring_elements":"0.54253","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00306","scoring_system":"epss","scoring_elements":"0.5438","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00306","scoring_system":"epss","scoring_elements":"0.54395","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-2400"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2400","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2400"},{"reference_url":"https://github.com/dompdf/dompdf","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/dompdf/dompdf"},{"reference_url":"https://huntr.dev/bounties/a6da5e5e-86be-499a-a3c3-2950f749202a","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/a6da5e5e-86be-499a-a3c3-2950f749202a"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/07/msg00017.html","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://lists.debian.org/debian-lts-announce/2023/07/msg00017.html"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1015874","reference_id":"1015874","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1015874"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-2400","reference_id":"CVE-2022-2400","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-2400"},{"reference_url":"https://github.com/advisories/GHSA-5qj8-6xxj-hp9h","reference_id":"GHSA-5qj8-6xxj-hp9h","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-5qj8-6xxj-hp9h"},{"reference_url":"https://usn.ubuntu.com/6277-1/","reference_id":"USN-6277-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6277-1/"},{"reference_url":"https://usn.ubuntu.com/6277-2/","reference_id":"USN-6277-2","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/6277-2/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/25093?format=json","purl":"pkg:composer/dompdf/dompdf@2.0.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-6uwe-wg7h-4uck"},{"vulnerability":"VCID-9wzq-4yc6-17d4"},{"vulnerability":"VCID-wghv-pf4e-w3by"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/dompdf/dompdf@2.0.0"}],"aliases":["CVE-2022-2400","GHSA-5qj8-6xxj-hp9h"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-euye-hzm8-wkff"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/210929?format=json","vulnerability_id":"VCID-m27n-v4kb-9qe6","summary":"Server-Side Request Forgery in dompdf/dompdf","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0085","reference_id":"","reference_type":"","scores":[{"value":"0.00437","scoring_system":"epss","scoring_elements":"0.63606","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00437","scoring_system":"epss","scoring_elements":"0.63504","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00437","scoring_system":"epss","scoring_elements":"0.63614","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00437","scoring_system":"epss","scoring_elements":"0.63617","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0085"},{"reference_url":"https://github.com/dompdf/dompdf","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/dompdf/dompdf"},{"reference_url":"https://github.com/dompdf/dompdf/commit/bb1ef65011a14730b7cfbe73506b4bb8a03704bd","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/dompdf/dompdf/commit/bb1ef65011a14730b7cfbe73506b4bb8a03704bd"},{"reference_url":"https://huntr.dev/bounties/73dbcc78-5ba9-492f-9133-13bbc9f31236","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/73dbcc78-5ba9-492f-9133-13bbc9f31236"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0085","reference_id":"CVE-2022-0085","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0085"},{"reference_url":"https://github.com/FriendsOfPHP/security-advisories/blob/master/dompdf/dompdf/CVE-2022-0085.yaml","reference_id":"CVE-2022-0085.YAML","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/FriendsOfPHP/security-advisories/blob/master/dompdf/dompdf/CVE-2022-0085.yaml"},{"reference_url":"https://github.com/advisories/GHSA-pf6p-25r2-fx45","reference_id":"GHSA-pf6p-25r2-fx45","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-pf6p-25r2-fx45"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/25093?format=json","purl":"pkg:composer/dompdf/dompdf@2.0.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-6uwe-wg7h-4uck"},{"vulnerability":"VCID-9wzq-4yc6-17d4"},{"vulnerability":"VCID-wghv-pf4e-w3by"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/dompdf/dompdf@2.0.0"}],"aliases":["CVE-2022-0085","GHSA-pf6p-25r2-fx45"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-m27n-v4kb-9qe6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/208684?format=json","vulnerability_id":"VCID-q3qe-kk8b-wqhn","summary":"Remote code injection in dompdf/dompdf","references":[{"reference_url":"http://packetstormsecurity.com/files/171738/Dompdf-1.2.1-Remote-Code-Execution.html","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://packetstormsecurity.com/files/171738/Dompdf-1.2.1-Remote-Code-Execution.html"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-28368","reference_id":"","reference_type":"","scores":[{"value":"0.88906","scoring_system":"epss","scoring_elements":"0.99543","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-28368"},{"reference_url":"https://github.com/dompdf/dompdf","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/dompdf/dompdf"},{"reference_url":"https://github.com/dompdf/dompdf/commit/4c70e1025bcd9b7694b95dd552499bd83cd6141d","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/dompdf/dompdf/commit/4c70e1025bcd9b7694b95dd552499bd83cd6141d"},{"reference_url":"https://github.com/dompdf/dompdf/issues/2598","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/dompdf/dompdf/issues/2598"},{"reference_url":"https://github.com/dompdf/dompdf/pull/2808","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/dompdf/dompdf/pull/2808"},{"reference_url":"https://github.com/snyk-labs/php-goof","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/snyk-labs/php-goof"},{"reference_url":"https://packagist.org/packages/dompdf/dompdf#v1.2.1","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://packagist.org/packages/dompdf/dompdf#v1.2.1"},{"reference_url":"https://snyk.io/blog/security-alert-php-pdf-library-dompdf-rce","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://snyk.io/blog/security-alert-php-pdf-library-dompdf-rce"},{"reference_url":"https://snyk.io/blog/security-alert-php-pdf-library-dompdf-rce/","reference_id":"","reference_type":"","scores":[],"url":"https://snyk.io/blog/security-alert-php-pdf-library-dompdf-rce/"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/webapps/51270.py","reference_id":"CVE-2022-28368","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/webapps/51270.py"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-28368","reference_id":"CVE-2022-28368","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-28368"},{"reference_url":"https://github.com/FriendsOfPHP/security-advisories/blob/master/dompdf/dompdf/CVE-2022-28368.yaml","reference_id":"CVE-2022-28368.YAML","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/FriendsOfPHP/security-advisories/blob/master/dompdf/dompdf/CVE-2022-28368.yaml"},{"reference_url":"https://github.com/advisories/GHSA-x752-qjv4-c4hc","reference_id":"GHSA-x752-qjv4-c4hc","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"cvssv3.1_qr","scoring_elements":""},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-x752-qjv4-c4hc"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/20006?format=json","purl":"pkg:composer/dompdf/dompdf@1.2.1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-3y27-a2g7-vbff"},{"vulnerability":"VCID-6uwe-wg7h-4uck"},{"vulnerability":"VCID-9wzq-4yc6-17d4"},{"vulnerability":"VCID-euye-hzm8-wkff"},{"vulnerability":"VCID-m27n-v4kb-9qe6"},{"vulnerability":"VCID-tshn-sa2g-cbac"},{"vulnerability":"VCID-wghv-pf4e-w3by"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/dompdf/dompdf@1.2.1"}],"aliases":["CVE-2022-28368","GHSA-x752-qjv4-c4hc"],"risk_score":10.0,"exploitability":"2.0","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-q3qe-kk8b-wqhn"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/158751?format=json","vulnerability_id":"VCID-tshn-sa2g-cbac","summary":"An improper restriction of external entities (XXE) vulnerability in dompdf/dompdf's SVG parser allows for Server-Side Request Forgery (SSRF) and deserialization attacks. This issue affects all versions prior to 2.0.0. The vulnerability can be exploited even if the isRemoteEnabled option is set to false. It allows attackers to perform SSRF, disclose internal image files, and cause PHAR deserialization attacks.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-3902","reference_id":"","reference_type":"","scores":[{"value":"0.0509","scoring_system":"epss","scoring_elements":"0.90023","published_at":"2026-06-11T12:55:00Z"},{"value":"0.0509","scoring_system":"epss","scoring_elements":"0.9006","published_at":"2026-06-14T12:55:00Z"},{"value":"0.0509","scoring_system":"epss","scoring_elements":"0.90062","published_at":"2026-06-13T12:55:00Z"},{"value":"0.0509","scoring_system":"epss","scoring_elements":"0.90054","published_at":"2026-06-12T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-3902"},{"reference_url":"https://github.com/dompdf/dompdf","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/dompdf/dompdf"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2021-3902","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2021-3902"},{"reference_url":"https://huntr.com/bounties/a6071c07-806f-429a-8656-a4742e4191b1","reference_id":"a6071c07-806f-429a-8656-a4742e4191b1","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-11-18T14:34:31Z/"}],"url":"https://huntr.com/bounties/a6071c07-806f-429a-8656-a4742e4191b1"},{"reference_url":"https://github.com/dompdf/dompdf/commit/f56bc8e40be6c0ae0825e6c7396f4db80620b799","reference_id":"f56bc8e40be6c0ae0825e6c7396f4db80620b799","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-11-18T14:34:31Z/"}],"url":"https://github.com/dompdf/dompdf/commit/f56bc8e40be6c0ae0825e6c7396f4db80620b799"},{"reference_url":"https://github.com/advisories/GHSA-3vjh-xrhf-v9xh","reference_id":"GHSA-3vjh-xrhf-v9xh","reference_type":"","scores":[{"value":"CRITICAL","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-3vjh-xrhf-v9xh"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/25093?format=json","purl":"pkg:composer/dompdf/dompdf@2.0.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-6uwe-wg7h-4uck"},{"vulnerability":"VCID-9wzq-4yc6-17d4"},{"vulnerability":"VCID-wghv-pf4e-w3by"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/dompdf/dompdf@2.0.0"}],"aliases":["CVE-2021-3902","GHSA-3vjh-xrhf-v9xh"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-tshn-sa2g-cbac"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/211712?format=json","vulnerability_id":"VCID-wghv-pf4e-w3by","summary":"Dompdf's usage of vulnerable version of phenx/php-svg-lib leads to restriction bypass and potential RCE","references":[{"reference_url":"https://github.com/dompdf/dompdf","reference_id":"","reference_type":"","scores":[{"value":"10.0","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/dompdf/dompdf"},{"reference_url":"https://github.com/advisories/GHSA-97m3-52wr-xvv2","reference_id":"GHSA-97m3-52wr-xvv2","reference_type":"","scores":[{"value":"CRITICAL","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-97m3-52wr-xvv2"},{"reference_url":"https://github.com/dompdf/dompdf/security/advisories/GHSA-97m3-52wr-xvv2","reference_id":"GHSA-97m3-52wr-xvv2","reference_type":"","scores":[{"value":"10.0","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"cvssv3.1_qr","scoring_elements":""},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/dompdf/dompdf/security/advisories/GHSA-97m3-52wr-xvv2"},{"reference_url":"https://github.com/dompdf/php-svg-lib/security/advisories/GHSA-f3qr-qr4x-j273","reference_id":"GHSA-f3qr-qr4x-j273","reference_type":"","scores":[{"value":"10.0","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H"},{"value":"CRITICAL","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/dompdf/php-svg-lib/security/advisories/GHSA-f3qr-qr4x-j273"}],"fixed_packages":[],"aliases":["GHSA-97m3-52wr-xvv2","GMS-2024-338","GMS-2024-341"],"risk_score":4.5,"exploitability":"0.5","weighted_severity":"9.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-wghv-pf4e-w3by"}],"fixing_vulnerabilities":[],"risk_score":"10.0","resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/dompdf/dompdf@0.8.3"}