0.005 Low
EPSS
Percentile
75.4%
Versions of pdf-image before 2.0.0 are vulnerable to command injection. This vulnerability is exploitable if the attacker has control over the pdfFilePath variable passed into pdf-image.
pdf-image
pdfFilePath
Update to version 2.0.0 or later.