30 matches found
EUVD-2020-18859
Malware in sbrugna...
EUVD-2024-3136
Malicious code in bioql PyPI...
EUVD-2024-2920
Malicious code in bioql PyPI...
CVE-2020-26308
Validate.js provides a declarative way of validating javascript objects. Versions 0.13.1 and prior contain one or more regular expressions that are vulnerable to Regular Expression Denial of Service ReDoS. As of time of publication, no known patches are available...
CVE-2020-26309
Validate.js provides a declarative way of validating javascript objects. Versions 0.11.3 and prior contain one or more regular expressions that are vulnerable to Regular Expression Denial of Service ReDoS. As of time of publication, it is unknown if any patches are available...
Security Bulletin: IBM Watson CP4D Data Stores is vulnerable to Validate.js Regular Expression Denial of Service (ReDoS) vulnerabilitiy(CVE-2020-26310)
Summary A potential Regular Expression Denial of Service ReDoSvulnerability CVE-2020-26310 has been identified related to Validate.js that affects IBM Watson CP4D Data Stores. This vulnerability have been addressed. Refer to details for additional information. Vulnerability Details...
Regular Expression Denial Of Service (ReDoS)
Validate.js is vulnerable to Regular Expression Denial of Service ReDoS. The vulnerability is due to certain regular expressions in Validate.js that can enter catastrophic backtracking, when the regex engine takes an excessive amount of time to evaluate certain input patterns, allowing attackers ...
validate.js Regular Expression Denial of Service vulnerability
Validate.js provides a declarative way of validating javascript objects. Versions 0.13.1 and prior contain one or more regular expressions that are vulnerable to Regular Expression Denial of Service ReDoS. As of time of publication, no known patches are available...
GHSA-RV73-9C8W-JP4C validate.js Regular Expression Denial of Service vulnerability
Validate.js provides a declarative way of validating javascript objects. Versions 0.13.1 and prior contain one or more regular expressions that are vulnerable to Regular Expression Denial of Service ReDoS. As of time of publication, no known patches are available...
1game-texas-holdem (>=1.2.0 <=1.11.1), @1studio/ui (>=1.0.0-beta.1 <=3.9.0) +994 more potentially affected by CVE-2020-26308 via validate.js (>=0.10.0 <=0.13.1)
validate.js NPM version =0.10.0, =1.2.0, =1.0.0-beta.1, =5.0.1, =0.1.0, =1.0.6, =3.3.20, =2.0.0-alpha.1, =0.3.9, =1.3.0, =1.2.1, =0.3.12, =1.3.12, =0.1.1, =0.1.26 and more Source cves: CVE-2020-26308 Source advisory: OSV:GHSA-RV73-9C8W-JP4C...
CVE-2020-26309
Validate.js provides a declarative way of validating javascript objects. Versions 0.11.3 and prior contain one or more regular expressions that are vulnerable to Regular Expression Denial of Service ReDoS. As of time of publication, it is unknown if any patches are available...
CVE-2020-26308
Validate.js provides a declarative way of validating javascript objects. Versions 0.13.1 and prior contain one or more regular expressions that are vulnerable to Regular Expression Denial of Service ReDoS. As of time of publication, no known patches are available...
CVE-2020-26309
Validate.js provides a declarative way of validating javascript objects. Versions 0.11.3 and prior contain one or more regular expressions that are vulnerable to Regular Expression Denial of Service ReDoS. As of time of publication, it is unknown if any patches are available...
CVE-2020-26310
Validate.js provides a declarative way of validating javascript objects. All versions as of 30 November 2020 contain one or more regular expressions that are vulnerable to Regular Expression Denial of Service ReDoS. As of time of publication, it is unknown if any patches are available...
CVE-2020-26308
Validate.js provides a declarative way of validating javascript objects. Versions 0.13.1 and prior contain one or more regular expressions that are vulnerable to Regular Expression Denial of Service ReDoS. As of time of publication, no known patches are available...
CVE-2020-26310 GHSL-2020-305: Regular Expression Denial of Service (ReDoS) in Pure JavaScript HTML5 Parser
Validate.js provides a declarative way of validating javascript objects. All versions as of 30 November 2020 contain one or more regular expressions that are vulnerable to Regular Expression Denial of Service ReDoS. As of time of publication, it is unknown if any patches are available...
CVE-2020-26310 GHSL-2020-305: Regular Expression Denial of Service (ReDoS) in Pure JavaScript HTML5 Parser
Validate.js provides a declarative way of validating javascript objects. All versions as of 30 November 2020 contain one or more regular expressions that are vulnerable to Regular Expression Denial of Service ReDoS. As of time of publication, it is unknown if any patches are available...
CVE-2020-26310
CVE-2020-26310 affects Validate.js; all versions as of 30 November 2020 are vulnerable to Regular Expression Denial of Service (ReDoS). Connected sources confirm a CVSS base score of 8.7 ( HIGH ), AV:N/AC:L/AT:N/PR:N/UI:N/VI:N/SC:N/VA:H, with potential impact on availability and negligible impact...
CVE-2020-26309 GHSL-2020-303: Regular Expression Denial of Service (ReDoS) in nope-validator
Validate.js provides a declarative way of validating javascript objects. Versions 0.11.3 and prior contain one or more regular expressions that are vulnerable to Regular Expression Denial of Service ReDoS. As of time of publication, it is unknown if any patches are available...
CVE-2020-26309
CVE-2020-26309 concerns the Nope-validator (Validate.js) library. Versions 0.11.3 and earlier contain one or more regular expressions vulnerable to Regular Expression Denial of Service (ReDoS). Documented sources indicate this is a high-severity issue (CVSS-like: HIGH) with potential network expo...