markdown-pdf - CVE-2023-0835
markdown-pdf
version 11.0.0 allows an external attacker to remotely obtain arbitrary local files. This is possible because the application does not validate the Markdown content entered by the user.
PoC || GTFO
Last updated
Was this helpful?