Spatie - Browsershot CVE

Filtered by vendor Spatie Subscribe

Filtered by product Browsershot

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2020-7790	1 Spatie	1 Browsershot	2020-12-14	5.0 MEDIUM	5.3 MEDIUM
This affects the package spatie/browsershot from 0.0.0. By specifying a URL in the file:// protocol an attacker is able to include arbitrary files in the resultant PDF.

Vulnerabilities (CVE)