2 matches found
003-gas-convert (=1.0.1), 01homework (>=1.0.0 <=1.0.1) +49019 more potentially affected by CVE-2013-7452 via validator (>=0.1.8 <=1.0.0)
validator NPM version =0.1.8, =1.0.0, =0.0.2, =0.0.8, =0.0.1, =0.0.6, =1.0.9, =0.0.1, =0.0.122 and more Source cves: CVE-2013-7452 Source advisory: OSV:GHSA-RH6C-Q938-3R9Q...
CVE-2013-7452
The CVE-2013-7452 issue affects the Node.js validator module prior to version 1.1.0. The root cause is a flaw that allows remote attackers to bypass the cross-site scripting (XSS) filter when processing a crafted javascript URI. The impact described is bypassing the XSS filter; no other effects a...