Severity: Critical
CVSS Score: 9.8
Command injection exists in pdf-image v2.0.0 due to an unescaped string parameter.