VYPR

npm package

jsreport

pkg:npm/jsreport

Vulnerabilities (2)

  • CVE-2023-2583May 8, 2023
    affected < 3.11.3fixed 3.11.3

    Code Injection in GitHub repository jsreport/jsreport prior to 3.11.3.

  • CVE-2020-8128Feb 14, 2020
    affected < 2.6.0fixed 2.6.0

    An unintended require and server-side request forgery vulnerabilities in jsreport version 2.5.0 and earlier allow attackers to execute arbitrary code.