CVE-2020-8128: Server-Side Request Forgery and Inclusion of Functionality from Untrusted Control Sphere in jsreport

Severity: Critical

CVSS Score: 9.8

An unintended require and server-side request forgery vulnerabilities in jsreport version 2.5.0 and earlier allow attackers to execute arbitrary code.