CVE-2023-2583

Code Injection in jsreport/jsreport

CVSS 10 CRITICALEPSS 1.1%CWE-94

Code Injection in GitHub repository jsreport/jsreport prior to 3.11.3.

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Affected products

jsreport · jsreport/jsreport

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/jsreport/jsreport/commit/afaff3804b34b38e959f5ae65f9e672088de13d7 https://huntr.dev/bounties/397ea68d-1e28-44ff-b830-c8883d067d96