An unintended require and server-side request forgery vulnerabilities in jsreport version 2.5.0 and earlier allow attackers to execute arbitrary code.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://hackerone.com/reports/660565 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: hackerone
Published: 2020-02-14T21:30:21
Updated: 2024-08-04T09:48:25.647Z
Reserved: 2020-01-28T00:00:00
Link: CVE-2020-8128
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2020-02-14T22:15:10.847
Modified: 2020-02-20T20:57:55.230
Link: CVE-2020-8128
Redhat
No data.