VDB
KO
MEDIUM 6.1

GHSA-vh59-v9r5-4mh4

Cross-site scripting in jspdf

Details

Affected versions of this package are vulnerable to Cross-site Scripting (XSS). It's possible to inject JavaScript code via the `html` method.

Are you affected?

Enter the version of the package you're using.

Affected packages

npm / jspdf
Introduced in: 0 Fixed in: 2.0.0
Fix npm install jspdf@2.0.0

References