← All Tags
# vulnerability security cve-2025-68428 jspdf node.js

1 link tagged with all of: vulnerability + security + cve-2025-68428 + jspdf + node.js

Links

Critical jsPDF flaw lets hackers steal secrets via generated PDFs

The jsPDF library has a critical vulnerability allowing attackers to steal local files by exploiting unsanitized paths in generated PDFs. This affects versions before 4.0, with a severity score of 9.2. Users are advised to upgrade to version 4.0.0 or later for protection.
Saved by tldr-importer · Last saved February 14, 2026 · 2 min read
jspdf ✓ vulnerability ✓ security ✓ node.js ✓ cve-2025-68428 ✓