All affected versions <2.0.0 of package jspdf are vulnerable to Cross-site Scripting (XSS). It is possible to inject JavaScript code via the html...
6.1CVSS
6.1AI Score
0.001EPSS
7.5CVSS
7.5AI Score
0.005EPSS
In all versions of the package jspdf, it is possible to use <script> in order to go over the filtering...
6.3CVSS
6.2AI Score
0.003EPSS