CVE-2024-25885 | xhtml2pdf 0.2.13 String utils.py getcolor redos

Inserito da Angelo Barbosa | Ott 8, 2024 | CVE

A vulnerability was found in xhtml2pdf 0.2.13. It has been rated as problematic. This issue affects the function getcolor of the file utils.py of the component String Handler. The manipulation leads to inefficient regular expression complexity.

The identification of this vulnerability is CVE-2024-25885. The attack may be initiated remotely. There is no exploit available.

CVE-2024-25885 | xhtml2pdf 0.2.13 String utils.py getcolor redos

Post correlati

CVE-2024-32138 | KaizenCoders Short URL Plugin up to 1.6.8 on WordPress cross site scripting

CVE-2024-0169 | Dell Unity up to 5.3 cross site scripting (dsa-2024-042)

CVE-2024-34388 | Scribit GDPR Compliance Plugin up to 1.2.5 on WordPress information disclosure

CVE-2024-35683 | Teplitsa of Social Technologies Leyka Plugin up to 3.31.1 on WordPress authorization