Skip to main content

Pdfkit

1 CVEs product

Monthly

CVE-2022-25765 Ruby CRITICAL POC PATCH THREAT Act Now

The package pdfkit from 0.0.0 are vulnerable to Command Injection where the URL is not properly sanitized. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Pdfkit Fedora
NVD GitHub
CVSS 3.1
9.8
EPSS
39.4%
EPSS 39% CVSS 9.8
CRITICAL POC PATCH THREAT Act Now

The package pdfkit from 0.0.0 are vulnerable to Command Injection where the URL is not properly sanitized. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Pdfkit Fedora
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy