CVE-2020-8128 · Vexday

CVE-2020-8128

EPSS 2.6%CWE-829

An unintended require and server-side request forgery vulnerabilities in jsreport version 2.5.0 and earlier allow attackers to execute arbitrary code.

Affected products

n/a · jsreport

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://hackerone.com/reports/660565