jspdf vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2026-31938Criticaljspdf: jsPDF has HTML Injection in New Window pathsCVE-2026-31898Highjspdf: jsPDF has a PDF Object Injection via FreeText colorCVE-2026-25940Highjspdf: jsPDF has a PDF Injection in AcroForm module allows Arbitrary JavaScript Execution…CVE-2026-25755Highjspdf: jsPDF has a PDF Object Injection via Unsanitized Input in addJS MethodCVE-2026-25535Highjspdf: jsPDF Affected by Client-Side/Server-Side Denial of Service via Malicious GIF DimensionsCVE-2026-24737Highjspdf: jsPDF has PDF Injection in AcroFormChoiceField that allows Arbitrary JavaScript ExecutionCVE-2026-24133Highjspdf: jsPDF Vulnerable to Denial of Service (DoS) via Unvalidated BMP Dimensions in BMPDecoderCVE-2026-24043Mediumjspdf: jsPDF Vulnerable to Stored XMP Metadata Injection (Spoofing & Integrity Violation)CVE-2026-24040Mediumjspdf: jsPDF has Shared State Race Condition in addJS PluginCVE-2025-68428Criticaljspdf: jsPDF has Local File Inclusion/Path Traversal vulnerabilityCVE-2025-57810Highjspdf: jsPDF Denial of Service (DoS)CVE-2025-29907Highjspdf: jsPDF Bypass Regular Expression Denial of Service (ReDoS)CVE-2020-7690Mediumjspdf: Cross-site scripting in jspdfCVE-2020-7691Mediumjspdf: Cross-site scripting in jspdfCVE-2021-23353Highjspdf: jspdf vulnerable to Regular Expression Denial of Service (ReDoS)

Stop the waste.
Protect your environment with Kodem.