Lack of input validation in pdf-image npm package version <= 2.0.0 may allow an malicious user to run arbitrary code if PDF file path is constructed based on untrusted user input.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
pdf-image project pdf-image |