Headline
GHSA-rhwx-hjx2-x4qr: PDFKit vulnerable to Command Injection
The package pdfkit from version 0.0.0 through version 0.8.6 is vulnerable to Command Injection where the URL is not properly sanitized.
PDFKit vulnerable to Command Injection
Critical severity GitHub Reviewed Published Sep 10, 2022 • Updated Sep 15, 2022
Related news
pdfkit 0.8.7.2 Command Injection
pdfkit version 08.7.2 suffers from a command injection vulnerability.
CVE-2022-25765
The package pdfkit from 0.0.0 are vulnerable to Command Injection where the URL is not properly sanitized.