Lucene search
K

9 matches found

Wolfi
Wolfi
added 2025/03/22 10:43 a.m.18 views

CVE-2025-29907 vulnerabilities

Vulnerabilities for packages: opensearch-dashboards...

8.7CVSS7.2AI score0.00646EPSS
Exploits1
Chainguard
Chainguard
added 2025/03/22 10:12 a.m.37 views

CVE-2025-29907 vulnerabilities

Vulnerabilities for packages: opensearch-dashboards, opensearch-dashboards-fips...

8.7CVSS6.7AI score0.00646EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/03/20 7:18 p.m.18 views

CVE-2025-29907

jsPDF is a library to generate PDFs in JavaScript. Prior to 3.0.1, user control of the first argument of the addImage method results in CPU utilization and denial of service. If given the possibility to pass unsanitised image urls to the addImage method, a user can provide a harmful data-url that...

8.7CVSS6.8AI score0.00646EPSS
Exploits1References1
vulnersOsv
vulnersOsv
added 2025/03/18 9:7 p.m.5 views

360shitu (=0.1.0), @0soft/zero-material-ui (>=0.0.1 <=0.0.25) +2095 more potentially affected by CVE-2025-29907 via jspdf (>=1.0.272 <=3.0.0)

jspdf NPM version =1.0.272, =0.0.1, =1.0.0, =1.0.162, =1.0.0, =1.0.0, =0.1.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =0.0.2, =1.0.0, =2.0.67, =2.0.78 and more Source cves: CVE-2025-29907 Source advisory: OSV:GHSA-W532-JXJH-HJHJ...

8.7CVSS6.7AI score0.00646EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2025/03/18 9:7 p.m.9 views

org.webjars.bowergithub.hhurz:tableexport.jquery.plugin (=1.26.0) potentially affected by CVE-2025-29907 via org.webjars.bowergithub.parallax:jspdf (=2.4.0)

org.webjars.bowergithub.parallax:jspdf MAVEN version =2.4.0 is affected by a known vulnerability. The following packages have a transitive dependency on org.webjars.bowergithub.parallax:jspdf and may be impacted: - org.webjars.bowergithub.hhurz:tableexport.jquery.plugin =1.26.0 Source cves:...

8.7CVSS6.6AI score0.00646EPSS
Exploits1
NVD
NVD
added 2025/03/18 7:15 p.m.23 views

CVE-2025-29907

jsPDF is a library to generate PDFs in JavaScript. Prior to 3.0.1, user control of the first argument of the addImage method results in CPU utilization and denial of service. If given the possibility to pass unsanitised image urls to the addImage method, a user can provide a harmful data-url that...

8.7CVSS0.00646EPSS
Exploits1References2
Circl
Circl
added 2025/03/18 7:2 p.m.7 views

CVE-2025-29907

creationtimestamp| type| source ---|---|--- 2025-03-18 19:02:41+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/7953 2025-03-18 19:48:22+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114185162030536607 2025-03-18 20:18:44+00:00| seen|...

8.7CVSS6.1AI score0.00646EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/03/18 6:40 p.m.9 views

CVE-2025-29907 jsPDF Bypass Regular Expression Denial of Service (ReDoS)

jsPDF is a library to generate PDFs in JavaScript. Prior to 3.0.1, user control of the first argument of the addImage method results in CPU utilization and denial of service. If given the possibility to pass unsanitised image urls to the addImage method, a user can provide a harmful data-url that...

8.7CVSS6.7AI score0.00646EPSS
Exploits1References2
OSV
OSV
added 2025/03/18 6:40 p.m.9 views

CVE-2025-29907 jsPDF Bypass Regular Expression Denial of Service (ReDoS)

jsPDF is a library to generate PDFs in JavaScript. Prior to 3.0.1, user control of the first argument of the addImage method results in CPU utilization and denial of service. If given the possibility to pass unsanitised image urls to the addImage method, a user can provide a harmful data-url that...

8.7CVSS6AI score0.00646EPSS
Exploits1References4
Rows per page
Query Builder