EPSS
Percentile
65.2%
node-latex-pdf is vulnerable to command injection. Insecure handling of compilation and execution of source file in selflatex function in node-latex-pdf.js allows an attacker to inject and execute malicious commands.
selflatex
node-latex-pdf.js
github.com/advisories/GHSA-32fw-9wq8-9x9c
github.com/toolbuddy/node-latex-pdf/commit/c88b652509a1e878820cb8972e5d59147772937a
github.com/toolbuddy/node-latex-pdf/pull/1