Lucene search
GoogleOSV:GHSA-5FJJ-CFH2-GHC5HistoryApr 13, 2021 - 3:25 p.m.
Server-Side Request Forgery and Inclusion of Functionality from Untrusted Control Sphere in jsreport
2021-04-1315:25:24
Google
osv.dev
10
server-side request forgery
untrusted control sphere
arbitrary code
jsreport
software
EPSS
0.009
Percentile
82.9%
An unintended require and server-side request forgery vulnerabilities in jsreport version 2.5.0 and earlier allow attackers to execute arbitrary code.
Related
veracode
veracode
Remote Code Execution (RCE)
2020-02-17 06:35:14
nvd
nvd
CVE-2020-8128
2020-02-14 22:15:10
github
github
hackerone
hackerone
Node.js third-party modules: [jsreport] Remote Code Execution
2019-07-26 05:00:15
prion
prion
Server side request forgery (ssrf)
2020-02-14 22:15:00
cvelist
cvelist
CVE-2020-8128
2020-02-14 21:30:21
cve
cve
CVE-2020-8128
2020-02-14 22:15:10