CVE-2025-26240

In JazzCore python-pdfkit 1.0.0, the fromstring method enables the execution of JavaScript code within the context of the server application and the exfiltration of local files...

CVE-2025-26240

In JazzCore python-pdfkit 1.0.0, the fromstring method enables the execution of JavaScript code within the context of the server application and the exfiltration of local files...

Exploit for CVE-2022-25765

CVE-2022-25765 — Command Injection in pdfkit Descripción...

Exploit for CVE-2022-25765

Command Injection quando processa URLs não sanitizadas. Isso aco...

EUVD-2013-0982

Malware in sbrugna...

EUVD-2018-15893

Malware in sbrugna...

EUVD-2007-2400

Malware in sbrugna...

EUVD-2006-1248

Malware in sbrugna...

EUVD-2022-2153

Malicious code in bioql PyPI...

CVE-2013-0971

Use-after-free vulnerability in PDFKit in Apple Mac OS X before 10.8.3 allows remote attackers to execute arbitrary code or cause a denial of service application crash via crafted ink annotations in a PDF document...

Fedora 37 : rubygem-pdfkit (2022-c0d55cd527)

The remote Fedora 37 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2022-c0d55cd527 advisory. New version 0.8.7.2 is released. ---- New version 0.8.7.1 is released. ---- Update to 0.8.7. This new release fixes CVE-2022-25765. Tenable has extracted the...

Exploit for CVE-2022-25765

CVE-2022-25765 Exploit A small POC exploit for CVE-2022-25765,...

pdfkit v0.8.7.2 - Command Injection Exploit

!/usr/bin/env python3 Exploit Title: pdfkit v0.8.7.2 - Command Injection Date: 02/23/2023 Exploit Author: UNICORD NicPWNs & Dev-Yeoj Vendor Homepage: https://pdfkit.org/ Software Link: https://github.com/pdfkit/pdfkit Version: 0.0.0-0.8.7.2 Tested on: pdfkit 0.8.6 CVE: CVE-2022–25765 Source:...

pdfkit 0.8.7.2 Command Injection

!/usr/bin/env python3 Exploit Title: pdfkit v0.8.7.2 - Command Injection Date: 02/23/2023 Exploit Author: UNICORD NicPWNs & Dev-Yeoj Vendor Homepage: https://pdfkit.org/ Software Link: https://github.com/pdfkit/pdfkit Version: 0.0.0-0.8.7.2 Tested on: pdfkit 0.8.6 CVE: CVE-2022–25765 Source:...

pdfkit v0.8.7.2 - Command Injection

!/usr/bin/env python3 Exploit Title: pdfkit v0.8.7.2 - Command Injection Date: 02/23/2023 Exploit Author: UNICORD NicPWNs & Dev-Yeoj Vendor Homepage: https://pdfkit.org/ Software Link: https://github.com/pdfkit/pdfkit Version: 0.0.0-0.8.7.2 Tested on: pdfkit 0.8.6 CVE: CVE-2022–25765 Source:...

SUSE CVE-2006-0301

Heap-based buffer overflow in Splash.cc in xpdf, as used in other products such as 1 poppler, 2 kdegraphics, 3 gpdf, 4 pdfkit.framework, and others, allows attackers to cause a denial of service and possibly execute arbitrary code via crafted splash images that produce certain values that exceed...

Exploit for CVE-2022-25765

Exploit for CVE-2022-25765 pdfkit - Command Injection !Git...

Exploit for CVE-2022-25765

PDFkit-CMD-Injection CVE-2022-25765 Exploit for CVE-2022-2...

The vulnerability of the PDF creation library pdfkit, related to insufficient validation of arguments passed to the command, allows attackers to execute arbitrary commands.

The vulnerability of the pdfkit library for creating PDF files is related to insufficient checking of arguments passed to the command. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands remotely...

Fedora 36 : rubygem-pdfkit (2022-3ec8272e72)

The remote Fedora 36 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2022-3ec8272e72 advisory. Update to 0.8.7. This new release fixes CVE-2022-25765. Tenable has extracted the preceding description block directly from the Fedora security advisory. Not...