What the vulnerability does
01Description
Server-Side Request Forgery (SSRF) in GitHub repository dompdf/dompdf prior to 2.0.0.
CVE-2022-0085
LOW
CVE-2022-0085: Server-Side Request Forgery (SSRF) in dompdf/dompdf
CVSS base score
3.7/10
CVSS vector
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
Key dates
02Disclosure timeline
June 28, 2022
CVE published
August 2, 2024
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2026-7603 JeecgBoot LoadFile Endpoint FileDownloadUtils.jav checkPathTraversalBatch server-side request forgery
CVE-2026-42352 pygeoapi 0.23.x: Unauthenticated SSRF via OGC API - Processes Subscriber
CVE-2023-50952 IBM InfoSphere Information Server server-side request forgery
CVE-2023-46725 FoodCoopShop Server-Side Request Forgery vulnerability
CVE-2025-68477 Langflow vulnerable to Server-Side Request Forgery
