Cross-site Scripting (XSS)
Overview jspdf is a PDF Document creation from JavaScript Affected versions of this package are vulnerable to Cross-site Scripting XSS. It's possible to use script in order to go over the filtering regex. PoC import jsPDF from "jspdf"; var doc = new jsPDF; let html = a...