CVE-2024-51058

Published
View on NVD ↗
CVSS v3
6.2
MEDIUM
CVSS v2
N/A
Affected
2
PROJECTS

Description

Local File Inclusion (LFI) vulnerability has been discovered in TCPDF 6.7.5. This vulnerability enables a user to read arbitrary files from the server's file system through <img> src tag, potentially exposing sensitive information.

tecnickcom/TCPDF
tecnickcom/TCPDF
Deprecated: PHP PDF library, superseded by tc-lib-pdf (https://github.com/tecnickcom/tc-lib-pdf)
GitHubGitHub
4.54K
saravana-hackz/vulnerability-research
saravana-hackz/vulnerability-research
CVE
GitHubGitHub