MohandAcherir

1 exploit Active since Dec 2021
CVE-2021-23639 NOMISEC CRITICAL WORKING POC
md-to-pdf < 5.0.0 - Remote Code Execution via Gray-Matter Front Matter Parsing
The package md-to-pdf before 5.0.0 are vulnerable to Remote Code Execution (RCE) due to utilizing the library gray-matter to parse front matter content, without disabling the JS engine.
CVSS 9.8