ava-zhang1

pdfjs has a security vulnerability under version 3.2.146. Can it be upgraded to 4.2.67 or higher?

6

Affected versions of this package are vulnerable to Arbitrary Code Injection in font_loader.js, which passes input to the eval() function when the default isEvalSupported option is in use. An attacker...