JsreportCVEs & Vulnerabilities
4 CVEs affecting Jsreport products, tracked from the National Vulnerability Database, with CVSS/EPSS scores and exploitation status.
4 CVEs→ All vendors
Most Affected Products
jsreport 2jsreport-chrome-pdf 1phantom-html-to-pdf 1
CVE-2023-2583CRITICAL
Code Injection in GitHub repository jsreport/jsreport prior to 3.11.3.
8 May 2023
10.0
CVSS
CVE-2020-7763HIGH
This affects the package phantom-html-to-pdf before 0.6.1.
5 Nov 2020
7.5
CVSS
CVE-2020-7762MEDIUM
This affects the package jsreport-chrome-pdf before 1.10.0.
5 Nov 2020
6.5
CVSS
CVE-2020-8128CRITICAL
An unintended require and server-side request forgery vulnerabilities in jsreport version 2.5.0 and earlier allow attackers to execute arbitrary code.
15 Feb 2020
9.8
CVSS
← PrevPage 1 / 1Next →