9 matches found
CVE-2025-29907 vulnerabilities
Vulnerabilities for packages: opensearch-dashboards...
CVE-2025-29907 vulnerabilities
Vulnerabilities for packages: opensearch-dashboards, opensearch-dashboards-fips...
CVE-2025-29907
jsPDF is a library to generate PDFs in JavaScript. Prior to 3.0.1, user control of the first argument of the addImage method results in CPU utilization and denial of service. If given the possibility to pass unsanitised image urls to the addImage method, a user can provide a harmful data-url that...
360shitu (=0.1.0), @0soft/zero-material-ui (>=0.0.1 <=0.0.25) +2095 more potentially affected by CVE-2025-29907 via jspdf (>=1.0.272 <=3.0.0)
jspdf NPM version =1.0.272, =0.0.1, =1.0.0, =1.0.162, =1.0.0, =1.0.0, =0.1.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =0.0.2, =1.0.0, =2.0.67, =2.0.78 and more Source cves: CVE-2025-29907 Source advisory: OSV:GHSA-W532-JXJH-HJHJ...
org.webjars.bowergithub.hhurz:tableexport.jquery.plugin (=1.26.0) potentially affected by CVE-2025-29907 via org.webjars.bowergithub.parallax:jspdf (=2.4.0)
org.webjars.bowergithub.parallax:jspdf MAVEN version =2.4.0 is affected by a known vulnerability. The following packages have a transitive dependency on org.webjars.bowergithub.parallax:jspdf and may be impacted: - org.webjars.bowergithub.hhurz:tableexport.jquery.plugin =1.26.0 Source cves:...
CVE-2025-29907
jsPDF is a library to generate PDFs in JavaScript. Prior to 3.0.1, user control of the first argument of the addImage method results in CPU utilization and denial of service. If given the possibility to pass unsanitised image urls to the addImage method, a user can provide a harmful data-url that...
CVE-2025-29907
creationtimestamp| type| source ---|---|--- 2025-03-18 19:02:41+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/7953 2025-03-18 19:48:22+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114185162030536607 2025-03-18 20:18:44+00:00| seen|...
CVE-2025-29907 jsPDF Bypass Regular Expression Denial of Service (ReDoS)
jsPDF is a library to generate PDFs in JavaScript. Prior to 3.0.1, user control of the first argument of the addImage method results in CPU utilization and denial of service. If given the possibility to pass unsanitised image urls to the addImage method, a user can provide a harmful data-url that...
CVE-2025-29907 jsPDF Bypass Regular Expression Denial of Service (ReDoS)
jsPDF is a library to generate PDFs in JavaScript. Prior to 3.0.1, user control of the first argument of the addImage method results in CPU utilization and denial of service. If given the possibility to pass unsanitised image urls to the addImage method, a user can provide a harmful data-url that...