76 matches found
DEBIAN-CVE-2025-26240
In JazzCore python-pdfkit 1.0.0, the fromstring method enables the execution of JavaScript code within the context of the server application and the exfiltration of local files...
CVE-2025-26240
In JazzCore python-pdfkit 1.0.0, the fromstring method enables the execution of JavaScript code within the context of the server application and the exfiltration of local files...
CVE-2025-26240
In JazzCore python-pdfkit 1.0.0, the fromstring method enables the execution of JavaScript code within the context of the server application and the exfiltration of local files...
PT-2026-50449
Name of the Vulnerable Software and Affected Versions JazzCore python-pdfkit version 1.0.0 Description The from string function allows the execution of JavaScript code within the server application context, which can lead to the exfiltration of local files. Recommendations At the moment, there is...
Exploit for CVE-2022-25765
CVE-2022-25765 — Command Injection in pdfkit Descripción...
Exploit for CVE-2022-25765
Command Injection quando processa URLs não sanitizadas. Isso aco...
EUVD-2006-1248
Malware in sbrugna...
EUVD-2007-2400
Malware in sbrugna...
EUVD-2013-0982
Malware in sbrugna...
EUVD-2018-15893
Malware in sbrugna...
EUVD-2022-2153
Malicious code in bioql PyPI...
CVE-2013-0971
Use-after-free vulnerability in PDFKit in Apple Mac OS X before 10.8.3 allows remote attackers to execute arbitrary code or cause a denial of service application crash via crafted ink annotations in a PDF document...
Fedora 37 : rubygem-pdfkit (2022-c0d55cd527)
The remote Fedora 37 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2022-c0d55cd527 advisory. New version 0.8.7.2 is released. ---- New version 0.8.7.1 is released. ---- Update to 0.8.7. This new release fixes CVE-2022-25765. Tenable has extracted the...
Exploit for CVE-2022-25765
CVE-2022-25765 Exploit A small POC exploit for CVE-2022-25765,...
pdfkit v0.8.7.2 - Command Injection Exploit
!/usr/bin/env python3 Exploit Title: pdfkit v0.8.7.2 - Command Injection Date: 02/23/2023 Exploit Author: UNICORD NicPWNs & Dev-Yeoj Vendor Homepage: https://pdfkit.org/ Software Link: https://github.com/pdfkit/pdfkit Version: 0.0.0-0.8.7.2 Tested on: pdfkit 0.8.6 CVE: CVE-2022–25765 Source:...
pdfkit 0.8.7.2 Command Injection
!/usr/bin/env python3 Exploit Title: pdfkit v0.8.7.2 - Command Injection Date: 02/23/2023 Exploit Author: UNICORD NicPWNs & Dev-Yeoj Vendor Homepage: https://pdfkit.org/ Software Link: https://github.com/pdfkit/pdfkit Version: 0.0.0-0.8.7.2 Tested on: pdfkit 0.8.6 CVE: CVE-2022–25765 Source:...
pdfkit v0.8.7.2 - Command Injection
!/usr/bin/env python3 Exploit Title: pdfkit v0.8.7.2 - Command Injection Date: 02/23/2023 Exploit Author: UNICORD NicPWNs & Dev-Yeoj Vendor Homepage: https://pdfkit.org/ Software Link: https://github.com/pdfkit/pdfkit Version: 0.0.0-0.8.7.2 Tested on: pdfkit 0.8.6 CVE: CVE-2022–25765 Source:...
SUSE CVE-2006-0301
Heap-based buffer overflow in Splash.cc in xpdf, as used in other products such as 1 poppler, 2 kdegraphics, 3 gpdf, 4 pdfkit.framework, and others, allows attackers to cause a denial of service and possibly execute arbitrary code via crafted splash images that produce certain values that exceed...
Exploit for CVE-2022-25765
Exploit for CVE-2022-25765 pdfkit - Command Injection !Git...
Exploit for CVE-2022-25765
PDFkit-CMD-Injection CVE-2022-25765 Exploit for CVE-2022-2...