We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Updated Securing dompdf (markdown)
Add note about untrusted user control of Dompdf configuration
updated title of GHSA-3qx2-6f78-w2j2
Add note about GHSA-3qx2-6f78-w2j2
Adds GHSA-3cw5-7cxw-v5qg vulnerability information
add a section recommending user input sanitization
add information about RCE disclosed in #2994
Add reference to vulnerabilities address in 2.0.0
Update code samples
Add link to CVE-2022-28368
Add missing vulnerability addressed in 0.8.6
Add issue and PR links to most recent exploit
Add RCE vulnerability disclosure for releases prior to 1.2.1
Added security-related limitation about user-generated content.
Update docs for the 0.7.0 release
Add "version addressed" to list of disclosed vulnerabilities
Add additional disclosed vulnerabilities
Tweak table styling and MD structure
Tweak vulnerability severity ratings
Format disclosed vulnerabilities in a table
Add security guide; update Unicode how-to