EPSS
Percentile
78.9%
pdf-image is vulnerable to arbitrary code execution. Lack of validation of user input allows an attacker to execute arbitrary code via a malicious PDF file path.
github.com/mooz/node-pdf-image/blob/master/index.js#L27
hackerone.com/reports/781664