Composer CVE Archive

pontedilana/php-weasyprint CVE Vulnerabilities

All known CVEs affecting pontedilana/php-weasyprint. Kodem’s runtime-powered SCA reveals which are actually reachable in your application.

Known vulnerabilities
CVE
Summary
Severity
CVE-2026-49359
PhpWeasyPrint vulnerable to SSRF and local file disclosure via the attachment…
Medium
CVE-2026-49286
PhpWeasyPrint vulnerable to PHAR deserialization via output filename…
High
CVE-2026-49260
php-weasyprint: shell command injection via configurable WeasyPrint binary path…
High

Prioritize pontedilana/php-weasyprint vulnerabilities

Kodem Kai can identify which of these CVEs are reachable in your dependency tree and generate targeted fix recommendations.

Get a demo →

Stop the waste.
Protect your environment with Kodem.

Get a personalized demo
Get a personalized demo