Tag

Pdf

1 brief RSS

pdf-image npm Package Command Injection Vulnerability (CVE-2026-26830)

The pdf-image npm package through version 2.0.0 is vulnerable to OS command injection via the pdfFilePath parameter due to improper sanitization, potentially leading to arbitrary code execution.

command-injection npm CVE-2026-26830 pdf

2r 1t 1i Mar 25, 2026