Unpatched RCE Bug in dompdf Project Affects HTML to PDF Converters
Researchers have disclosed an unpatched security vulnerability in “dompdf,” a PHP-based HTML to PDF converter, that, if successfully exploited, could lead to remote code execution in certain configurations.
“By injecting CSS into the data processed by…