Nascent Prototype Metaverse
    Severity: critical

    Arbitrary File Read



    All versions of html-pdf are vulnerable to Arbitrary File Read. The package fails to sanitize the HTML input, allowing attackers to exfiltrate server files by supplying malicious HTML code. XHR requests in the HTML code are executed by the server. Input with an XHR request such as"GET","file:///etc/passwd") will result in a PDF document with the contents of /etc/passwd.


    No fix is currently available. There is a mitigation available in the provided reference.


    Have content suggestions? Visit

    Advisory timeline

    1. published

      Advisory Published
      Sep 18th, 2019