CVE-2023-2583

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2023-2583

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-2583.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2023-2583

Aliases

GHSA-g7rj-q722-245g

Published

2023-05-08T17:15:11Z

Modified

2025-01-08T14:44:40.375596Z

Severity

10.0 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

Code Injection in GitHub repository jsreport/jsreport prior to 3.11.3.

References

Affected packages

Git / github.com/jsreport/jsreport

Affected ranges

Type: GIT
Repo: https://github.com/jsreport/jsreport
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

afaff3804b34b38e959f5ae65f9e672088de13d7

Fixed

afaff3804b34b38e959f5ae65f9e672088de13d7

Affected versions

0.*

0.1.10

0.1.12

0.1.14

0.1.17

0.1.7

0.10.0

0.10.1

0.11.0

0.12.0

0.12.1

0.13.0

0.13.1

0.13.2

0.13.3

0.13.4

0.13.5

0.2.1

0.2.10

0.2.5

0.2.6

0.2.8

0.2.9

0.3.0

0.4.0

0.4.1

0.4.2

0.5.0

0.6.0

0.6.1

0.6.2

0.6.3

0.7.0

0.7.1

0.7.2

0.8.1

0.8.2

0.8.3

0.8.4

0.9.1

1.*

1.0.6

1.0.7

1.0.8

1.0.9

1.1.0

1.1.2

1.10.0

1.2.0

1.2.1

1.3.0

1.3.1

1.3.2

1.3.3

1.4.0

1.5.0

1.5.1

1.6.0

1.7.0

1.8.1

1.8.2

1.9.1

1.9.2

2.*

2.0.0

2.0.0-beta

2.1.0

2.1.1

2.10.0

2.11.0

2.2.0

2.3.0

2.4.0

2.5.0

2.6.0

2.6.1

2.7.0

2.7.1

2.7.2

2.8.0

2.9.0

3.*

3.0.0

3.0.0-beta.2

3.0.1

3.1.0

3.1.1

3.10.0

3.11.0

3.11.1

3.11.2

3.2.0

3.3.0

3.4.0

3.5.0

3.6.0

3.6.1

3.6.2

3.7.0

3.7.1

3.8.0

3.9.0