## https://sploitus.com/exploit?id=417B0C00-44C1-5385-9A40-7FF761661AED
**๐จ jsPDF Bulk Detector โ CVE-2025-68428 ๐จ**
Asset-wide detection tool for identifying jsPDF usage related to CVE-2025-68428.
Detection only โ no exploitation.
**๐จ Background**
A critical vulnerability was disclosed in the popular JavaScript PDF generation library jsPDF, tracked as CVE-2025-68428.
According to reporting by BleepingComputer, this flaw allows attackers to read arbitrary local files when jsPDF is used in Node.js environments and user-controlled input reaches file-loading functions.
Vulnerability Details:
Type: Local File Inclusion (LFI) + Path Traversal
Severity: 9.2 (Critical)
Affected Versions: jsPDF jsPDF detected (v3.5.2)
[*] Scanning: https://safe-site.com
[โ] No jsPDF components detected across provided assets
**๐งช Interpreting Results**
Result Meaning
jsPDF detected Component present
Version < 4.0.0 Potentially affected
Version unknown Manual validation required
No detection jsPDF not found
**โ ๏ธ Detection โ Vulnerability**
Only Node.js implementations with unsafe file path handling are exploitable.
๐ Next Steps After Detection
If jsPDF is detected:
**Verify whether PDF generation occurs server-side**
Identify endpoints such as:
/generate-pdf
/export
/invoice
Trace user input reaching:
loadFile
addImage
addFont
html()
**Confirm Node.js runtime and jsPDF version**
๐ Defensive Recommendations
Upgrade to jsPDF v4.0.0+
Never pass user-controlled file paths
Use strict allowlists
Avoid overly permissive Node.js filesystem flags
**โ๏ธ Legal & Ethical Disclaimer**
**This tool is intended for educational purposes and authorized security testing only.
The author is not responsible for misuse or illegal activity.**
**๐ References**
CVE-2025-68428
jsPDF Security Advisory
Endor Labs Technical Analysis
BleepingComputer report on jsPDF vulnerability
**Author**
Nurjaman Shaikh
Cybersecurity Researcher | VAPT Analyst