writeups.xyz / CVE-2022-41343

Submitter : c2a

Date: 6 October 2022

Bounty : undisclosed

Vulnerabilities :

• RCE
• Insecure Deserialization
• Phar Deserialization

Programs :

• Dompdf

Authors :

• Tanto Security Team (@TantoSecurity)

Link :
https://tantosec.com/blog/cve-2022-41343/