CVE-2020-7740

HIGH

node-pdf-generator - Server-Side Request Forgery via Unsanitized URL Content

Title source: manual
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2020-7740. PoCs published by CS4239-U6.

AI-analyzed exploit summary This repository contains a functional proof-of-concept for CVE-2020-7740, demonstrating an SSRF vulnerability in the `node-pdf-generator` package. The exploit leverages the lack of input validation to forge requests to internal services via crafted URLs.

Description

This affects all versions of package node-pdf-generator. Due to lack of user input validation and sanitization done to the content given to node-pdf-generator, it is possible for an attacker to craft a url that will be passed to an external server allowing an SSRF attack.

Exploits (1)

nomisec WORKING POC
by CS4239-U6 · poc
https://github.com/CS4239-U6/node-pdf-generator-ssrf

This repository contains a functional proof-of-concept for CVE-2020-7740, demonstrating an SSRF vulnerability in the `node-pdf-generator` package. The exploit leverages the lack of input validation to forge requests to internal services via crafted URLs.

Classification
Working Poc 95%
Attack Type
Ssrf
Complexity
Trivial
Reliability
Reliable
Target: node-pdf-generator (all versions)
No auth needed
Prerequisites: Docker or Node.js/wkhtmltopdf installed · Network access to the vulnerable server
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (2)

Core 2
Core References
Third Party Advisory x_refsource_misc
https://snyk.io/vuln/SNYK-JS-NODEPDFGENERATOR-609636
Broken Link, Third Party Advisory x_refsource_misc
https://github.com/darrenhaken/node-pdf-generator/blob/master/index.js%23L29

Scores

CVSS v3 8.2
EPSS 0.0548
EPSS Percentile 90.5%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N

Details

CWE
CWE-918 CWE-20
Status published
Products (2)
node-pdf-generator_project/node-pdf-generator
npm/node-pdf-generator 0npm
Published Oct 06, 2020
Tracked Since Feb 18, 2026