All 3 CVE vulnerabilities found in url-to-png, with AI-generated Chinese analysis, references, and POCs.
Vendor: jasonraimondi
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-39919 | Capture screenshot of localhost web services (unauthenticated pages) in @jmondi/url-to-png CWE-200 | 3.1 | Low | 2024-07-15 |
| CVE-2024-39918 | Path Traveral in @jmondi/url-to-png CWE-22 | 4.3 | Medium | 2024-07-15 |
| CVE-2024-37169 | @jmondi/url-to-png arbitrary file read via Playwright's screenshot feature exploiting file wrapper CWE-22 | 5.3 | Medium | 2024-06-10 |
All 3 known CVE vulnerabilities affecting url-to-png with full Chinese analysis, references, and POCs where available.