python-reportlab

Link package | bugs open | bugs closed | Wiki | GitHub | web search
Description A proven industry-strength PDF generating solution
Version 4.2.2-5 [extra-testing]
4.2.2-1 [extra]

Resolved

Group Affected Fixed Severity Status Ticket
AVG-1592 3.5.54-1 3.5.55-1 Medium Fixed
Issue Group Severity Remote Type Description
CVE-2020-28463 AVG-1592 Medium Yes Url request injection
All versions of package python-reportlab are vulnerable to Server-side Request Forgery (SSRF) via img tags. In order to reduce risk, use trustedSchemes &...