SSRF vulnerability - Githubissues

marcbachmann / node-html-pdf

This repo isn't maintained anymore as phantomjs got dreprecated a long time ago. Please migrate to headless chrome/puppeteer.

MIT License

3.56k stars 545 forks source link

Open lucasbordeau opened 5 years ago

lucasbordeau commented 5 years ago

Here is a simple node.js application that renders a user input in a pdf with html-pdf : glitch pen

It seems that you can inject js file in no time with a Githubissues.

Githubissues is a development platform for aggregating issues.