Approved changes feed: RSS · Atom

cpe:2.3:a:n/a:github.com/thecodingmachine/gotenberg:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorN/A (22f567d3-1203-528c-8f0e-3eb9c2f6ca78)
ProductGithub.Com/Thecodingmachine/Gotenberg (3357fc28-b7ed-57f3-9048-2207792e8bd0)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2021-23345 vulnerable 2026-06-08 05:30:02.745814 Server-side Request Forgery (SSRF)
MEDIUM (5.3)
All versions of package github.com/thecodingmachine/gotenberg are vulnerable to Server-side Request Forgery (SSRF) via the /convert/html endpoint when the src attribute of an HTML element refers to an internal system file, such as <iframe src='file:///etc/passwd'>.
Published: 2021-02-26T17:20:17.953Z
Updated: 2024-09-16T17:17:42.907Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.