Improper Neutralization of Special Elements used in a Command ('Command Injection')
The package pdfkit from 0.0.0 is vulnerable to Command Injection where the URL is not properly sanitized.
Advisories for Gem/Pdfkit package
2022
2020
PDF File Generation Parameter Handling Remote Code Execution
Ruby PDFKit has a Code Execution Vulnerability