| पदवी | relaxedjs - Injection |
|---|
| वर्णन | The RelaxedJS tool (https://github.com/RelaxedJS/ReLaXed) does not sanitize JavaScript code when converting from Pug to PDF. As a result, an attacker could inject malicious code, which would be rendered in the PDF output. |
|---|
| उगम | ⚠️ https://drive.google.com/file/d/1Ll1dRwQds8987S-l5o2iJu4MQRG-p4-A/view?usp=sharing |
|---|
| उपयोगकर्ता | nilesh (UID 73953) |
|---|
| आधीनता | 19/09/2024 01:07 PM (1 वर्ष ago) |
|---|
| नेमस्तपणा | 27/09/2024 11:46 AM (8 days later) |
|---|
| स्थान | मान्य केले |
|---|
| VulDB entry | 278676 [RelaxedJS ReLaXed जोपर्यंत 0.2.2 Pug to PDF Converter क्रॉस साइट स्क्रिप्टिंग] |
|---|
| मुद्दे | 14 |
|---|