VYPR
Moderate severityNVD Advisory· Published Jul 6, 2020· Updated Sep 16, 2024

Cross-site Scripting (XSS)

CVE-2020-7691

Description

In all versions of the package jspdf, it is possible to use <script> in order to go over the filtering regex.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
jspdfnpm
< 2.0.02.0.0

Affected products

2

Patches

Vulnerability mechanics

References

9

News mentions

0

No linked articles in our index yet.