Node.js jsPDF ライブラリ < 4.0.0 ローカルファイルインクルージョン/パストラバーサルの脆弱性

Language:

バージョン 1.2 Feb 5, 2026, 4:41 PM CVSS metrics ("Cvssv4 threat score" set to 9.2) CVSS metrics ("Cvssv4 threat vector" set to "CVSS:4.0/E:P") CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:POC/RL:OF/RC:C") CVSS temporal metrics ("CVSSv3 temporal vector" set to "CVSS:3.0/E:P/RL:O/RC:C") Exploit attributes ("Exploit available" set to "True") Exploit attributes ("Exploitability ease" set to "Exploits are available") Plugin Feed: 202602051641
バージョン 1.1 Jan 19, 2026, 7:50 PM New Plugin Feed: 202601191950

* Changelogs are generally available for changes made after Nov 1, 2022