Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')
CVE-2026-24043
Summary
jsPDF is a library to generate PDFs in JavaScript. Prior to version 4.1.0, user control of the first argument of the "addMetadata" function allows users to inject arbitrary XML. If given the possibility to pass unsanitized input to the "addMetadata" method, a user can inject arbitrary XMP metadata into the generated PDF. If the generated PDF is signed, stored or otherwise processed after, the integrity of the PDF can no longer be guaranteed. The vulnerability has been fixed in jsPDF 4.1.0.
- LOW
- NETWORK
- LOW
- CHANGED
- REQUIRED
- LOW
- LOW
- NONE
CWE-74 - Injection
Listed as the number one web application security risk on the 'OWASP Top Ten', injection attacks are widespread and dangerous, especially in legacy applications. Injection attacks are a class of vulnerabilities in which an attacker injects untrusted data into a web application that gets processed by an interpreter, altering the program's execution. This can result in data loss/theft, loss of data integrity, denial of service, and even compromising the entire system.
References
Advisory Timeline
- Published
