CVSS N/A

2020-02-14 23:15:00 2020-02-14 23:15:00

An unintended require and server-side request forgery vulnerabilities in jsreport version 2.5.0 and earlier allow attackers to execute arbitrary code.

Advisory Patch Confirmed Link
https://hackerone.com/reports/660565