CVE-2026-25535High· 7.5▾ TwilightjsPDF is a library to generate PDFs in JavaScript. Prior to 4.2.0, user control of the first argument of the `addImage` method results in denial of service. If given the possibility to pass unsanitized image data or URLs to the `addImage…
▾ Twilight zone — High severity, or a signal on a lesser flaw
impact 41.3 · likelihood 0.1 · exploitation 0
The latest CVEs are free to read. CVE-2026-25535 is outside the free window — sign in (free) to view the full technical detail, affected versions, references, and raw markdown.