6 matches found
app.io (>=0.0.1 <=0.0.4), feathers-validation (>=0.5.0 <=0.5.1) +6 more potentially affected by CVE-2019-10781 via schema-inspector (>=1.4.2 <=1.6.8)
schema-inspector NPM version =1.4.2, =0.0.1, =0.5.0, =3.8.1, =1.0.2, =1.0.0, =0.2.0, =0.5.0 Source cves: CVE-2019-10781 Source advisory: OSV:GHSA-R24H-634P-M72X...
CVE-2019-10781
In schema-inspector before 1.6.9, a maliciously crafted JavaScript object can bypass the sanitize and the validate function used within schema-inspector...
CVE-2019-10781
In schema-inspector before 1.6.9, a maliciously crafted JavaScript object can bypass the sanitize and the validate function used within schema-inspector...
CVE-2019-10781
Schema-inspector (JS package) is affected by CVE-2019-10781 through versions before 1.6.9. A specially crafted JavaScript object can bypass sanitize() and validate(), enabling information exposure and potential property tampering. The root cause is the bypass of input sanitisation/validation with...
CVE-2019-10781
In schema-inspector before 1.6.9, a maliciously crafted JavaScript object can bypass the sanitize and the validate function used within schema-inspector...
app.io (>=0.0.1 <=0.0.4), feathers-validation (>=0.5.0 <=0.5.1) +6 more potentially affected by CVE-2019-10781 via schema-inspector (>=1.4.2 <=1.6.8)
schema-inspector NPM version =1.4.2, =0.0.1, =0.5.0, =3.8.1, =1.0.2, =1.0.0, =0.2.0, =0.5.0 Source cves: CVE-2019-10781 Source advisory: SNYK:JS-SCHEMAINSPECTOR-536970...