dbashford - Security Researcher - Exploit Intelligence Platform

CVE-2026-26831 WRITEUP CRITICAL WORKING POC

textract through 2.5.0 - Command Injection

textract through 2.5.0 is vulnerable to OS Command Injection via the file path parameter in multiple extractors. When processing files with malicious filenames, the filePath is passed directly to child_process.exec() in lib/extractors/doc.js, rtf.js, dxf.js, images.js, and lib/util.js with inadequate sanitization

CVSS 9.8

View Code

CVE-2026-26831 WRITEUP CRITICAL WRITEUP

textract through 2.5.0 - Command Injection

textract through 2.5.0 is vulnerable to OS Command Injection via the file path parameter in multiple extractors. When processing files with malicious filenames, the filePath is passed directly to child_process.exec() in lib/extractors/doc.js, rtf.js, dxf.js, images.js, and lib/util.js with inadequate sanitization

CVSS 9.8

View Code

CVE-2026-26831 WRITEUP CRITICAL WRITEUP

textract through 2.5.0 - Command Injection

textract through 2.5.0 is vulnerable to OS Command Injection via the file path parameter in multiple extractors. When processing files with malicious filenames, the filePath is passed directly to child_process.exec() in lib/extractors/doc.js, rtf.js, dxf.js, images.js, and lib/util.js with inadequate sanitization

CVSS 9.8

View Code