V
Scaner-VS
ENRU
HomeCatalogSourcesCWECAPECATT&CKMitigationsProductsVendorsDocs
Filters

All vulnerabilities

22 / 22
Product: thecodingmachine:gotenberg×Clear all
9.8
CVE-2020-13450CVE
A directory traversal vulnerability in file upload function of Gotenberg through 6.2.1 allows a…
2020-01-01Pre-auth
EPSS5.6%
pct 91
7.5
CVE-2020-13449CVE
A directory traversal vulnerability in the Markdown engine of Gotenberg through 6.2.1 allows an…
2020-01-01Pre-auth
EPSS4.7%
pct 90
9.8
CVE-2020-13451CVE
An incomplete-cleanup vulnerability in the Office rendering engine of Gotenberg through 6.2.1 a…
2020-01-01Pre-auth
EPSS3.0%
pct 85
9.8
CVE-2020-13452CVE
In Gotenberg through 6.2.1, insecure permissions for tini (writable by user gotenberg) potentia…
2020-01-01Pre-auth
EPSS2.7%
pct 84
9.8
CVE-2026-42589ANC
Gotenberg is a Docker-powered stateless API for PDF files. Prior to 8.31.0, Gotenberg's /forms/…
2026-01-01Pre-auth
EPSS2.4%
pct 81
7.5
CVE-2020-14160CVE
An SSRF vulnerability in Gotenberg through 6.2.1 exists in the remote URL to PDF conversion, wh…
2020-01-01Pre-auth
EPSS1.7%
pct 74
5.3
CVE-2021-23345CVE
All versions of package github.com/thecodingmachine/gotenberg are vulnerable to Server-side Req…
2021-01-01Pre-auth
EPSS1.1%
pct 59
6.1
CVE-2020-14161CVE
It is possible to inject HTML and/or JavaScript in the HTML to PDF conversion in Gotenberg thro…
2020-01-01Pre-auth
EPSS0.9%
pct 54
9.1
CVE-2026-40281ANC
Gotenberg is a Docker-powered stateless API for PDF files. In versions 8.30.1 and earlier, the …
2026-01-01Pre-auth
EPSS0.6%
pct 44
7.8
CVE-2026-27018CVE
Gotenberg is an API for converting document formats. Prior to version 8.29.0, the fix introduce…
2026-01-01Pre-auth
EPSS0.5%
pct 40
8.7
CVE-2026-35458ANC
Gotenberg is an API for converting document formats. In 8.29.1 and earlier, Gotenberg uses dlcl…
2026-01-01Pre-auth
EPSS0.5%
pct 38
7.8
CVE-2026-40280ANC
Gotenberg is an API-based document conversion tool. In versions 8.30.1 and earlier, the default…
2026-01-01Pre-auth
EPSS0.5%
pct 36
9.4
CVE-2026-42596ANC
Gotenberg is a Docker-powered stateless API for PDF files. Prior to 8.31.0, the default deny-li…
2026-01-01Pre-auth
EPSS0.4%
pct 26
7.5
CVE-2026-42594ANC
Gotenberg is a Docker-powered stateless API for PDF files. Prior to 8.32.0, the webhook middlew…
2026-01-01Pre-auth
EPSS0.3%
pct 26
8.2
CVE-2026-40893ANC
Gotenberg is a Docker-powered stateless API for PDF files. Prior to 8.31.0, Gotenberg only chec…
2026-01-01Pre-auth
EPSS0.3%
pct 26
8.6
CVE-2026-42595ANC
Gotenberg is a Docker-powered stateless API for PDF files. Prior to 8.32.0, Gotenberg's Chromiu…
2026-01-01Pre-auth
EPSS0.3%
pct 22
5.3
CVE-2026-42593ANC
Gotenberg is a Docker-powered stateless API for PDF files. Prior to 8.32.0, pdfengines/merge, p…
2026-01-01Pre-auth
EPSS0.3%
pct 22
8.2
CVE-2026-42590ANC
Gotenberg is a Docker-powered stateless API for PDF files. Prior to 8.30.0, The ExifTool metada…
2026-01-01Pre-auth
EPSS0.3%
pct 20
5.9
CVE-2026-42597ANC
Gotenberg is a Docker-powered stateless API for PDF files. Prior to 8.32.0, the /forms/chromium…
2026-01-01Pre-auth
EPSS0.3%
pct 16
8.2
CVE-2026-42591ANC
Gotenberg is a Docker-powered stateless API for PDF files. Prior to 8.32.0, the LibreOffice con…
2026-01-01Pre-auth
EPSS0.2%
pct 15
6.9
CVE-2026-39383ANC
Gotenberg is an API-based document conversion tool. In version 8.29.1, an unauthenticated attac…
2026-01-01Pre-auth
EPSS0.2%
pct 14
5.3
CVE-2026-42592ANC
Gotenberg is a Docker-powered stateless API for PDF files. Prior to 8.32.0, FilterOutboundURL r…
2026-01-01Pre-auth
EPSS0.2%
pct 8
Select a vulnerability on the left to open the preview.