Lucene search
+L

12 matches found

githubexploit
githubexploit
added 2026/05/31 4:5 p.m.100 views

Exploit for CVE-2022-25765

CVE-2022-25765 — Command Injection in pdfkit Descripción...

9.8CVSS7.3AI score0.39389EPSS
Exploits11
nessus
nessus
added 2024/11/14 12:0 a.m.17 views

Fedora 37 : rubygem-pdfkit (2022-c0d55cd527)

The remote Fedora 37 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2022-c0d55cd527 advisory. New version 0.8.7.2 is released. ---- New version 0.8.7.1 is released. ---- Update to 0.8.7. This new release fixes CVE-2022-25765. Tenable has extracted the...

9.8CVSS8.3AI score0.39389EPSS
Exploits11References2
packetstorm
packetstorm
added 2023/04/06 12:0 a.m.351 views

pdfkit 0.8.7.2 Command Injection

!/usr/bin/env python3 Exploit Title: pdfkit v0.8.7.2 - Command Injection Date: 02/23/2023 Exploit Author: UNICORD NicPWNs & Dev-Yeoj Vendor Homepage: https://pdfkit.org/ Software Link: https://github.com/pdfkit/pdfkit Version: 0.0.0-0.8.7.2 Tested on: pdfkit 0.8.6 CVE: CVE-2022–25765 Source:...

9.8CVSS9.4AI score0.39389EPSS
Exploits11
exploitdb
exploitdb
added 2023/04/06 12:0 a.m.369 views

pdfkit v0.8.7.2 - Command Injection

!/usr/bin/env python3 Exploit Title: pdfkit v0.8.7.2 - Command Injection Date: 02/23/2023 Exploit Author: UNICORD NicPWNs & Dev-Yeoj Vendor Homepage: https://pdfkit.org/ Software Link: https://github.com/pdfkit/pdfkit Version: 0.0.0-0.8.7.2 Tested on: pdfkit 0.8.6 CVE: CVE-2022–25765 Source:...

9.8CVSS9.5AI score0.39389EPSS
Exploits11
githubexploit
githubexploit
added 2023/02/10 12:50 a.m.468 views

Exploit for CVE-2022-25765

Exploit for CVE-2022-25765 pdfkit - Command Injection !Git...

9.8CVSS9.5AI score0.39389EPSS
Exploits11
githubexploit
githubexploit
added 2023/01/29 10:36 a.m.2068 views

Exploit for CVE-2022-25765

PDFkit-CMD-Injection CVE-2022-25765 Exploit for CVE-2022-2...

9.8CVSS9.7AI score0.39389EPSS
Exploits11
nessus
nessus
added 2022/12/23 12:0 a.m.32 views

Fedora 36 : rubygem-pdfkit (2022-3ec8272e72)

The remote Fedora 36 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2022-3ec8272e72 advisory. Update to 0.8.7. This new release fixes CVE-2022-25765. Tenable has extracted the preceding description block directly from the Fedora security advisory. Not...

9.8CVSS8.2AI score0.39389EPSS
Exploits11References2
nessus
nessus
added 2022/12/22 12:0 a.m.41 views

Fedora 35 : rubygem-pdfkit (2022-6da143f1a2)

The remote Fedora 35 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2022-6da143f1a2 advisory. Update to 0.8.7. This new release fixes CVE-2022-25765. Tenable has extracted the preceding description block directly from the Fedora security advisory. Not...

9.8CVSS8.2AI score0.39389EPSS
Exploits11References2
circl
circl
added 2022/12/04 9:5 p.m.18 views

CVE-2022-25765

creationtimestamp| type| source ---|---|--- 2022-12-04 21:05:25+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/3527 2022-12-06 04:04:20+00:00| published-proof-of-concept| https://t.me/crackcodes/1638 2022-12-06 06:38:55+00:00| published-proof-of-concept| https://t.me/simosaper/748...

9.8CVSS7.3AI score0.39389EPSS
Exploits11References16
openvas
openvas
added 2022/11/11 12:0 a.m.20 views

Fedora: Security Advisory for rubygem-pdfkit (FEDORA-2022-c0d55cd527)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS9.6AI score0.39389EPSS
Exploits11References2
cve
cve
added 2022/09/09 5:0 a.m.207 views

CVE-2022-25765

CVE-2022-25765 affects pdfkit (Ruby gem) with command injection in which pdfkit passes the user-supplied URL straight to wkhtmltopdf, allowing shell interpretation via backticks. Exploitation details show RCE via crafted URLs (e.g., http://example.comcmd), with multiple public PoCs/exploits and a...

9.8CVSS8.5AI score0.39389EPSS
Exploits11References7Affected Software1
attackerkb
attackerkb
added 2022/09/09 5:0 a.m.2 views

CVE-2022-25765

The package pdfkit from 0.0.0 are vulnerable to Command Injection where the URL is not properly sanitized...

9.8CVSS7.2AI score0.39389EPSS
Exploits11References11
Rows per page
Query Builder