Pdf-Image Project: >> Pdf-Image >> 1.1.0 Security Vulnerabilities
Lack of input validation in pdf-image npm package version <= 2.0.0 may allow an attacker to run arbitrary code if PDF file path is constructed based on untrusted user input.
CVSS Score
9.8
EPSS Score
0.005
Published
2020-02-28