Security
Headlines
HeadlinesLatestCVEs

Headline

GHSA-rhwx-hjx2-x4qr: PDFKit vulnerable to Command Injection

The package pdfkit from version 0.0.0 through version 0.8.6 is vulnerable to Command Injection where the URL is not properly sanitized.

ghsa
#git#perl#pdf

PDFKit vulnerable to Command Injection

Critical severity GitHub Reviewed Published Sep 10, 2022 • Updated Sep 15, 2022

Related news

pdfkit 0.8.7.2 Command Injection

pdfkit version 08.7.2 suffers from a command injection vulnerability.

CVE-2022-25765

The package pdfkit from 0.0.0 are vulnerable to Command Injection where the URL is not properly sanitized.