Pdfkit Project Pdfkit vulnerabilities

2 known vulnerabilities affecting pdfkit_project/pdfkit.

Total CVEs

2

CISA KEV

0

Public exploits

1

Exploited in wild

0

Severity breakdown

CRITICAL2

Vulnerabilities

Page 1 of 1

CVE-2022-25765CRITICALCVSS 9.8PoC≥ 0.0.0≥ 0.0.0, < unspecified2022-09-09

CVE-2022-25765 [CRITICAL] CVE-2022-25765: The package pdfkit from 0.0.0 are vulnerable to Command Injection where the URL is not properly sani The package pdfkit from 0.0.0 are vulnerable to Command Injection where the URL is not properly sanitized.

CVE-2013-1607CRITICALCVSS 9.8fixed in 0.5.32020-02-11

CVE-2013-1607 [CRITICAL] CWE-20 CVE-2013-1607: Ruby PDFKit gem prior to 0.5.3 has a Code Execution Vulnerability Ruby PDFKit gem prior to 0.5.3 has a Code Execution Vulnerability