Vulnerability Database
296,760
Total vulnerabilities in the database
CVE-2020-7690
All affected versions <2.0.0 of package jspdf are vulnerable to Cross-site Scripting (XSS). It is possible to inject JavaScript code via the html method.
| Software | From | Fixed in |
|---|---|---|
| parall / jspdf | - | 2.0.0 |
jspdf
|
- | 2.0.0 |
- https://github.com/MrRio/jsPDF/issues/2795
- https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARS-575260
- https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSBOWER-575258
- https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSBOWERGITHUBMRRIO-575259
- https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-575257
- https://snyk.io/vuln/SNYK-JS-JSPDF-575256
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime