Vulnerabilidades en pontedilana
4 resultadosCVE-2026-49286HIGHPhpWeasyPrint vulnerable to PHAR deserialization via output filename (CVE-2023-28115 case-insensitive bypass)EPSS 0.6%CVE-2026-49359MEDIUMPhpWeasyPrint vulnerable to SSRF and local file disclosure via the attachment optionEPSS 0.2%CVE-2026-49260HIGHPhpWeasyPrint: shell command injection via configurable WeasyPrint binary path due to inverted is_executable() guard (mirror of KnpLabs/snappy GHSA-vpr4-p6fq-85jc)EPSS 0.2%CVE-2026-49358LOWPhpWeasyPrint vulnerable to arbitrary file deletion at shutdown via public $temporaryFilesEPSS 0.1%