There's a flaw in how bin/wkhtmltopdf handles single quotes.
% bin/wkhtmltopdf --title "User's Guide" file:///path/to/html /tmp/output.pdf
sh: -c: line 0: unexpected EOF while looking for matching `''
sh: -c: line 1: syntax error: unexpected end of file
This can lead to security vulnerability when the user of this package passes an untrusted string to the bin/wkhtmltopdf command.
There's a flaw in how bin/wkhtmltopdf handles single quotes.
This can lead to security vulnerability when the user of this package passes an untrusted string to the bin/wkhtmltopdf command.