CVE-2020-8128

An unintended require and server-side request forgery vulnerabilities in jsreport version 2.5.0 and earlier allow attackers to execute arbitrary code.
References
Link Resource
https://hackerone.com/reports/660565 Exploit Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:jsreport:jsreport:*:*:*:*:*:node.js:*:*

Information

Published : 2020-02-14 10:15

Updated : 2020-02-20 08:57


NVD link : CVE-2020-8128

Mitre link : CVE-2020-8128

Products Affected
No products.
CWE
CWE-918

Server-Side Request Forgery (SSRF)