← Back

Reportlab

reportlab

Vendor: Reportlab • 4 CVEs

CVEs (4)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2019-19450
2Debian
Reportlab
2Debian Linux
Reportlab
Nov 21, 2024
Sep 20, 2023
N/A· v4
9.8 CRITICAL· v3
N/A· v2
paraparser in ReportLab before 3.5.31 allows remote code execution because start_unichar in paraparser.py evaluates untrusted user input in a unichar element in a crafted XML document with '<unichar code="' followed by a...Show more
paraparser in ReportLab before 3.5.31 allows remote code execution because start_unichar in paraparser.py evaluates untrusted user input in a unichar element in a crafted XML document with '<unichar code="' followed by arbitrary Python code, a similar issue to CVE-2019-17626.Show less
CVE-2023-33733
1Reportlab
1Reportlab
Jan 8, 2025
Jun 5, 2023
N/A· v4
7.8 HIGH· v3
N/A· v2
Reportlab up to v3.6.12 allows attackers to execute arbitrary code via supplying a crafted PDF file.
CVE-2020-28463
2Fedoraproject
Reportlab
2Fedora
Reportlab
Nov 21, 2024
Feb 18, 2021
N/A· v4
6.5 MEDIUM· v3
4.0 MEDIUM· v2
All versions of package reportlab are vulnerable to Server-side Request Forgery (SSRF) via img tags. In order to reduce risk, use trustedSchemes & trustedHosts (see in Reportlab's documentation) Steps to reproduce by Kar...Show more
All versions of package reportlab are vulnerable to Server-side Request Forgery (SSRF) via img tags. In order to reduce risk, use trustedSchemes & trustedHosts (see in Reportlab's documentation) Steps to reproduce by Karan Bamal: 1. Download and install the latest package of reportlab 2. Go to demos -> odyssey -> dodyssey 3. In the text file odyssey.txt that needs to be converted to pdf inject <img src="http://127.0.0.1:5000" valign="top"/> 4. Create a nc listener nc -lp 5000 5. Run python3 dodyssey.py 6. You will get a hit on your nc showing we have successfully proceded to send a server side request 7. dodyssey.py will show error since there is no img file on the url, but we are able to do SSRFShow less
CVE-2019-17626
1Reportlab
1Reportlab
Nov 21, 2024
Oct 16, 2019
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
ReportLab through 3.5.26 allows remote code execution because of toColor(eval(arg)) in colors.py, as demonstrated by a crafted XML document with '<span color="' followed by arbitrary Python code.