parallax News Articles
Recent news articles refferecing the vendors vulnerabilities.
Critical Vulnerability Patched in jsPDF
A jsPDF vulnerability tracked as CVE-2025-68428 could allow attackers to read arbitrary files, exposing configurations and credentials.
csoonline.comCVE-2025-68428Critical jsPDF vulnerability enables arbitrary file read in Node.js deployments
The path traversal bug allows attackers to include arbitrary filesystem content in generated PDFs when file paths are not properly validated.
Critical Vulnerability Patched in jsPDF
A jsPDF vulnerability tracked as CVE-2025-68428 could allow attackers to read arbitrary files, exposing configurations and credentials.
Critical jsPDF flaw lets hackers steal secrets via generated PDFs
The jsPDF library for generating PDF documents in JavaScript applications is vulnerable to a critical vulnerability that allows an attacker to steal sensitive data from the local filesystem by including it in generated files.
Cyber PressCVE-2025-68428Critical Flaw in jsPDF Library Allows Attackers to Read Arbitrary Files
The flaw, tracked as CVE-2025-68428, exposes applications running the Node.js build of the library to Local File Inclusion (LFI) and Path Traversal attacks.