Primary

Context

PPTAgent Arbitrary File Write and Directory Creation Vulnerability

Vulnerability

A vulnerability in PPTAgent, prior to commit 418491a, allows for arbitrary file writing and directory creation through the 'markdown_table_to_image' function. This function accepts a path parameter and passes it to 'get_html_table_image' without proper validation, enabling the creation of arbitrary directories and the writing of files, such as images, to any location. The issue has been patched in commit 418491a.

Impact

Exploitation of this vulnerability could lead to unauthorized file writes and directory creations, with potential scenarios including the replacement of SSH keys, writing web shells to server directories, or probing directory permissions.

Remediation

Users can update to the version containing commit 418491a to address this vulnerability.

Added: May 4, 2026, 5:26 PM

Updated: May 4, 2026, 5:26 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

7.3

remediation

0.0

relevance

7.4

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

7.3

remediation

0.0

relevance

7.4

threat

3.2

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

PPTAgent Arbitrary File Write and Directory Creation Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating