Lucene search
K

76 matches found

OSV
OSV
added 2026/06/17 5:16 p.m.4 views

DEBIAN-CVE-2025-26240

In JazzCore python-pdfkit 1.0.0, the fromstring method enables the execution of JavaScript code within the context of the server application and the exfiltration of local files...

8.4CVSS6AI score0.00392EPSS
Exploits0References1
NVD
NVD
added 2026/06/17 5:16 p.m.12 views

CVE-2025-26240

In JazzCore python-pdfkit 1.0.0, the fromstring method enables the execution of JavaScript code within the context of the server application and the exfiltration of local files...

8.4CVSS0.00392EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/17 12:0 a.m.21 views

CVE-2025-26240

In JazzCore python-pdfkit 1.0.0, the fromstring method enables the execution of JavaScript code within the context of the server application and the exfiltration of local files...

0.00392EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/17 12:0 a.m.16 views

PT-2026-50449

Name of the Vulnerable Software and Affected Versions JazzCore python-pdfkit version 1.0.0 Description The from string function allows the execution of JavaScript code within the server application context, which can lead to the exfiltration of local files. Recommendations At the moment, there is...

8.4CVSS6AI score0.00392EPSS
Exploits0References6
GithubExploit
GithubExploit
added 2026/05/31 4:5 p.m.96 views

Exploit for CVE-2022-25765

CVE-2022-25765 — Command Injection in pdfkit Descripción...

9.8CVSS7.3AI score0.38924EPSS
Exploits11
GithubExploit
GithubExploit
added 2025/12/11 11:13 p.m.159 views

Exploit for CVE-2022-25765

Command Injection quando processa URLs não sanitizadas. Isso aco...

9.8CVSS7.5AI score0.38924EPSS
Exploits11
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2006-1248

Malware in sbrugna...

7.6CVSS6.1AI score0.02139EPSS
Exploits0References23
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2007-2400

Malware in sbrugna...

6.8CVSS6.4AI score0.02705EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2013-0982

Malware in sbrugna...

6.8CVSS6.1AI score0.01844EPSS
Exploits2References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2018-15893

Malware in sbrugna...

6.5CVSS7.9AI score0.02081EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-2153

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.02675EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/05/22 11:11 a.m.16 views

CVE-2013-0971

Use-after-free vulnerability in PDFKit in Apple Mac OS X before 10.8.3 allows remote attackers to execute arbitrary code or cause a denial of service application crash via crafted ink annotations in a PDF document...

6.8CVSS7.9AI score0.01844EPSS
Exploits2References1
Tenable Nessus
Tenable Nessus
added 2024/11/14 12:0 a.m.17 views

Fedora 37 : rubygem-pdfkit (2022-c0d55cd527)

The remote Fedora 37 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2022-c0d55cd527 advisory. New version 0.8.7.2 is released. ---- New version 0.8.7.1 is released. ---- Update to 0.8.7. This new release fixes CVE-2022-25765. Tenable has extracted the...

9.8CVSS8.3AI score0.38924EPSS
Exploits11References2
GithubExploit
GithubExploit
added 2024/01/22 2:45 p.m.624 views

Exploit for CVE-2022-25765

CVE-2022-25765 Exploit A small POC exploit for CVE-2022-25765,...

9.8CVSS9.8AI score0.38924EPSS
Exploits11
0day.today
0day.today
added 2023/04/06 12:0 a.m.277 views

pdfkit v0.8.7.2 - Command Injection Exploit

!/usr/bin/env python3 Exploit Title: pdfkit v0.8.7.2 - Command Injection Date: 02/23/2023 Exploit Author: UNICORD NicPWNs & Dev-Yeoj Vendor Homepage: https://pdfkit.org/ Software Link: https://github.com/pdfkit/pdfkit Version: 0.0.0-0.8.7.2 Tested on: pdfkit 0.8.6 CVE: CVE-2022–25765 Source:...

9.8CVSS9.4AI score0.38924EPSS
Exploits11
Packet Storm
Packet Storm
added 2023/04/06 12:0 a.m.351 views

pdfkit 0.8.7.2 Command Injection

!/usr/bin/env python3 Exploit Title: pdfkit v0.8.7.2 - Command Injection Date: 02/23/2023 Exploit Author: UNICORD NicPWNs & Dev-Yeoj Vendor Homepage: https://pdfkit.org/ Software Link: https://github.com/pdfkit/pdfkit Version: 0.0.0-0.8.7.2 Tested on: pdfkit 0.8.6 CVE: CVE-2022–25765 Source:...

9.8CVSS9.4AI score0.38924EPSS
Exploits11
Exploit DB
Exploit DB
added 2023/04/06 12:0 a.m.367 views

pdfkit v0.8.7.2 - Command Injection

!/usr/bin/env python3 Exploit Title: pdfkit v0.8.7.2 - Command Injection Date: 02/23/2023 Exploit Author: UNICORD NicPWNs & Dev-Yeoj Vendor Homepage: https://pdfkit.org/ Software Link: https://github.com/pdfkit/pdfkit Version: 0.0.0-0.8.7.2 Tested on: pdfkit 0.8.6 CVE: CVE-2022–25765 Source:...

9.8CVSS9.5AI score0.38924EPSS
Exploits11
SUSE CVE
SUSE CVE
added 2023/02/15 6:16 a.m.3 views

SUSE CVE-2006-0301

Heap-based buffer overflow in Splash.cc in xpdf, as used in other products such as 1 poppler, 2 kdegraphics, 3 gpdf, 4 pdfkit.framework, and others, allows attackers to cause a denial of service and possibly execute arbitrary code via crafted splash images that produce certain values that exceed...

7.5CVSS8.1AI score0.04403EPSS
Exploits0References5
GithubExploit
GithubExploit
added 2023/02/10 12:50 a.m.463 views

Exploit for CVE-2022-25765

Exploit for CVE-2022-25765 pdfkit - Command Injection !Git...

9.8CVSS9.5AI score0.38924EPSS
Exploits11
GithubExploit
GithubExploit
added 2023/01/29 10:36 a.m.2065 views

Exploit for CVE-2022-25765

PDFkit-CMD-Injection CVE-2022-25765 Exploit for CVE-2022-2...

9.8CVSS9.7AI score0.38924EPSS
Exploits11
Rows per page
Query Builder