CVE-2024-56519 Information

Description

An issue was discovered in TCPDF before 6.8.0. setSVGStyles does not sanitize the SVG font-family attribute.

Reference

https://github.com/tecnickcom/TCPDF/commit/c9f41cbb84880bdb4fc3e0a9d287214d1ac4d7f4 https://github.com/tecnickcom/TCPDF/compare/6.7.8…6.8.0 https://tcpdf.org