Lucene search
PRIOn knowledge basePRION:CVE-2019-16769HistoryDec 05, 2019 - 7:15 p.m.
Cross site scripting
2019-12-0519:15:00
PRIOn knowledge base
www.prio-n.com
6
The serialize-javascript npm package before version 2.1.1 is vulnerable to Cross-site Scripting (XSS). It does not properly mitigate against unsafe characters in serialized regular expressions. This vulnerability is not affected on Node.js environment since Node.js’s implementation of RegExp.prototype.toString() backslash-escapes all forward slashes in regular expressions. If serialized data of regular expression objects are used in an environment other than Node.js, it is affected by this vulnerability.
Related
nodejs
nodejs
Cross-Site Scripting
2019-12-09 15:26:05
veracode
veracode
Cross-Site Scripting (XSS)
2019-12-06 03:26:35
githubexploit
githubexploit
Exploit for Cross-site Scripting in Verizon Serialize-Javascript
2020-12-01 09:18:58
cve
cve
CVE-2019-16769
2019-12-05 19:15:15
github
github
Cross-Site Scripting in serialize-javascript
2019-12-05 18:44:37
redhatcve
redhatcve
CVE-2019-16769
2020-06-17 16:56:11
osv
osv
Cross-Site Scripting in serialize-javascript
2019-12-05 18:44:37
CVE-2019-16769
2019-12-05 19:15:15
cvelist
cvelist
nvd
nvd
CVE-2019-16769
2019-12-05 19:15:15
nessus
nessus
RHEL 8 : Red Hat OpenShift Service Mesh servicemesh-grafana (RHSA-2020:2796)
2020-07-01 00:00:00
redhat
redhat