GHSA-x4w5-r546-x9qh
Suggest an improvement- Source
- https://github.com/advisories/GHSA-x4w5-r546-x9qh
- Import Source
- https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2019/10/GHSA-x4w5-r546-x9qh/GHSA-x4w5-r546-x9qh.json
- JSON Data
- https://api.osv.dev/v1/vulns/GHSA-x4w5-r546-x9qh
- Aliases
-
- CVE-2019-15138
- Published
- 2019-10-11T18:40:38Z
- Modified
- 2023-11-08T04:01:12.699822Z
- Severity
-
- 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N CVSS Calculator
- Summary
- Arbitrary File Read in html-pdf
- Details
-
All versions of
html-pdfare vulnerable to Arbitrary File Read. The package fails to sanitize the HTML input, allowing attackers to exfiltrate server files by supplying malicious HTML code. XHR requests in the HTML code are executed by the server. Input with an XHR request such asrequest.open("GET","file:///etc/passwd")will result in a PDF document with the contents of/etc/passwd.Recommendation
No fix is currently available. There is a mitigation available in the provided reference.
- Database specific
{ "cwe_ids": [ "CWE-200", "CWE-668", "CWE-73", "CWE-79" ], "github_reviewed": true, "github_reviewed_at": "2019-09-25T12:39:43Z", "nvd_published_at": "2019-09-20T20:15:00Z", "severity": "HIGH" }- References
-
- https://nvd.nist.gov/vuln/detail/CVE-2019-15138
- https://github.com/marcbachmann/node-html-pdf/issues/530
- https://github.com/marcbachmann/node-html-pdf/issues/530#issuecomment-535045123
- https://github.com/marcbachmann/node-html-pdf/commit/c12d6977778014139183c9f8da7579fd7ac65362
- https://github.com/marcbachmann/node-html-pdf
- https://github.com/marcbachmann/node-html-pdf/releases/tag/v3.0.1
- https://security.netapp.com/advisory/ntap-20191017-0005
- https://www.npmjs.com/advisories/1095
Affected packages
npm / html-pdf
Package
- Name
- html-pdf
- View open source insights on deps.dev
- Purl
- pkg:npm/html-pdf