Filtered by vendor Tripexpress Project
Subscribe
Total
1 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2021-43691 | 1 Tripexpress Project | 1 Tripexpress | 2024-02-28 | 7.5 HIGH | 9.8 CRITICAL |
| tripexpress v1.1 is affected by a path manipulation vulnerability in file system/helpers/dompdf/load_font.php. The variable src is coming from $_SERVER["argv"] then there is a path manipulation vulnerability. | |||||