Lucene search
K

5 matches found

Packet Storm
Packet Storm
added 2026/04/27 12:0 a.m.162 views

📄 node-tesseract-ocr 2.2.1 Command Injection

In node-tesseract-ocr version 2.2.1, a security vulnerability allows OS command injection when attacker-controlled image paths are passed to the OCR function. ================================================================================================================================== | Title...

9.8CVSS5.4AI score0.01706EPSS
Exploits3
Packet Storm
Packet Storm
added 2026/03/26 12:0 a.m.246 views

📄 node-tesseract-ocr 2.2.1 Command Injection

node-tesseract-ocr through version 2.2.1 allows OS command injection in recognize in src/index.js. The package builds a shell command string and executes it with childprocess.exec. Because the input path is only wrapped in double quotes, an attacker can inject shell syntax through a crafted file...

9.8CVSS5.8AI score0.01706EPSS
Exploits3
vulnersOsv
vulnersOsv
added 2026/03/25 6:45 p.m.12 views

@aaquib/whatsasenanpm (=1.3.5), @alexandersen01/sharepoint-mcp-server-better (=0.3.23) +86 more potentially affected by CVE-2026-26832 via node-tesseract-ocr (>=0.1.0 <=2.2.1)

node-tesseract-ocr NPM version =0.1.0, =1.0.10, =0.0.1, =2.3.50, =2.0.0, =0.0.1, =0.0.2, =1.0.0, =0.0.1, =0.0.1, =0.0.4 and more Source cves: CVE-2026-26832 Source advisory: SNYK:JS-NODETESSERACTOCR-15874141...

9.8CVSS7.2AI score0.01706EPSS
Exploits3
vulnersOsv
vulnersOsv
added 2026/03/25 6:31 p.m.10 views

@aaquib/whatsasenanpm (=1.3.5), @alexandersen01/sharepoint-mcp-server-better (=0.3.23) +86 more potentially affected by CVE-2026-26832 via node-tesseract-ocr (>=0.1.0 <=2.2.1)

node-tesseract-ocr NPM version =0.1.0, =1.0.10, =0.0.1, =2.3.50, =2.0.0, =0.0.1, =0.0.2, =1.0.0, =0.0.1, =0.0.1, =0.0.4 and more Source cves: CVE-2026-26832 Source advisory: OSV:GHSA-8J44-735H-W4W2...

9.8CVSS7.2AI score0.01706EPSS
Exploits3
GithubExploit
GithubExploit
added 2026/03/24 4:15 p.m.172 views

Exploit for CVE-2026-26832

CVE-2026-26832: OS command injection in node-tesseract-ocr...

6AI score0.01706EPSS
Exploits3
Rows per page
Query Builder