# CVE-2022-28368 - Dompdf RCE
Dompdf RCE PoC Exploit

![alt text](

Dompdf versions <1.2.1 are vulnerable to Remote Code Execution (RCE) by injecting CSS into the data. The file can be tricked into storing a malicious font with a .php file extension in its font cache, which can later be executed by accessing it from the web.

# Usage
git clone
cd  CVE-2022-28368
python3 -m pip install -r requirements.txt
python3 --help

# Notes