Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2026-31938

Опубликовано: 18 мар. 2026
Источник: redhat
CVSS3: 8.1

Описание

A flaw was found in jsPDF, a JavaScript library for generating PDFs. A remote attacker can exploit this vulnerability by providing malicious input to the options argument of the output function. When a victim creates and opens a PDF using this unsanitized input, arbitrary HTML, including scripts, can be injected and executed within the victim's browser context. This Cross-Site Scripting (XSS) vulnerability allows the attacker to extract or modify sensitive information from the victim's browser.

Меры по смягчению последствий

Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Advanced Cluster Security 4advanced-cluster-security/rhacs-main-rhel8Affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Important
Дефект:
CWE-79
https://bugzilla.redhat.com/show_bug.cgi?id=2448550jspdf: jsPDF: Cross site scripting via unsanitized output options

8.1 High

CVSS3

Связанные уязвимости

nvd логотип

CVE-2026-31938

CVSS3: 9.6
nvd
9 дней назад

jsPDF is a library to generate PDFs in JavaScript. Prior to version 4.2.1, user control of the `options` argument of the `output` function allows attackers to inject arbitrary HTML (such as scripts) into the browser context the created PDF is opened in. The vulnerability can be exploited in the following scenario: the attacker provides values for the output options, for example via a web interface. These values are then passed unsanitized (automatically or semi-automatically) to the attack victim. The victim creates and opens a PDF with the attack vector using one of the vulnerable method overloads inside their browser. The attacker can thus inject scripts that run in the victims browser context and can extract or modify secrets from this context. The vulnerability has been fixed in jspdf@4.2.1. As a workaround, sanitize user input before passing it to the output method.

debian логотип

CVE-2026-31938

CVSS3: 9.6
debian
9 дней назад

jsPDF is a library to generate PDFs in JavaScript. Prior to version 4. ...

github логотип

GHSA-wfv2-pwc8-crg5

CVSS3: 9.6
github
10 дней назад

jsPDF has HTML Injection in New Window paths

fstec логотип

BDU:2026-03346

CVSS3: 9.6
fstec
10 дней назад

Уязвимость функции output() библиотеки для создания PDF-файлов jsPDF, позволяющая нарушителю выполнить произвольный код

8.1 High

CVSS3