prevent malicious versions of HTML2PDF library

Application/Model/AbstractClasses/pdfdocumentsGeneric.php

@@ -71,9 +71,6 @@ abstract class pdfdocumentsGeneric extends Base implements genericInterface
     public function genPdf($sFilename, $iSelLang = 0, $target = self::PDF_DESTINATION_STDOUT)
     {
         $oPdf = oxNew(Html2Pdf::class, ...$this->getPdfProperties());
-        $oPdf->getSecurityService()->addAllowedHost(
-            parse_url(Registry::getConfig()->getShopCurrentUrl())['host']
-        );
         $oPdf->setTestIsImage(false);
         $htmlContent = $this->getHTMLContent($iSelLang);
 

composer.json

@@ -33,7 +33,7 @@
   "require": {
     "php": "^7.0 || ^8.0",
     "oxid-esales/oxideshop-ce": "6.3 - 6.14",
-    "spipu/html2pdf": "^5.2",
+    "spipu/html2pdf": "~5.2.8",
     "d3/modcfg": "^5.3.6.000 || ^6",
     "beberlei/assert": "^3.3.2"
   },