CVE-2025-56590 in HTML2PDF SDKinformation

Résumé

par MITRE • 22/01/2026

An issue was discovered in the InsertFromURL() function of the Apryse HTML2PDF SDK thru 11.10. This vulnerability could allow an attacker to execute arbitrary operating system commands on the local server.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsable

MITRE

Réserver

17/08/2025

Divulgation

22/01/2026

Modérer

accepté

Entrée

VDB-342351

CPE

prêt

CWE

CWE-78 (confirmé)

CVSS

9.8 (CISA-ADP)

EPSS

0.00038

KEV

non

Activités

très faible

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2025-56590
NVD	https://nvd.nist.gov/vuln/detail/CVE-2025-56590
CVE Details	https://www.cvedetails.com/cve/CVE-2025-56590/

◂ Précédent Aperçu Suivant ▸

Interested in the pricing of exploits?

See the underground prices here!