Arbitrary file read via Playwright's screenshot feature exploiting file wrapper · CVE-2024-37169 · GitHub Advisory Database · GitHub

Arbitrary file read via Playwright's screenshot feature exploiting file wrapper

Moderate severity GitHub Reviewed Published Jun 4, 2024 in jasonraimondi/url-to-png • Updated Jun 11, 2024

Package

@jmondi/url-to-png (npm)

Affected versions

< 2.0.3

Patched versions

2.0.3

Description

Impact

All users of url-to-png. Please see jasonraimondi/url-to-png#47

Patches

v2.0.3 requires input url to be of protocol http or https

Workarounds

Requires upgrade.

References

References

jasonraimondi published to jasonraimondi/url-to-png

Jun 4, 2024

Published to the GitHub Advisory Database Jun 5, 2024

Reviewed Jun 5, 2024

Published by the National Vulnerability Database

Jun 10, 2024

Last updated Jun 11, 2024

Severity

Moderate

5.3

/ 10

CVSS base metrics

Attack vector

Network

Attack complexity

Low

Privileges required

None

User interaction

None

Scope

Unchanged

Confidentiality

Low

Integrity

None

Availability

None

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N