Lucene search
+L

12 matches found

Prion
Prion
added 2022/07/14 8:15 p.m.44 views

Input validation

The jQuery Validation Plugin jquery-validation provides drop-in validation for forms. Versions of jquery-validation prior to 1.19.5 are vulnerable to regular expression denial of service ReDoS when an attacker is able to supply arbitrary input to the url2 method. This is due to an incomplete fix...

5CVSS7.5AI score0.02026EPSS
Exploits2References3Affected Software1
Cvelist
Cvelist
added 2022/07/14 7:30 p.m.52 views

CVE-2022-31147 jquery-validation ReDoS in url2 due to incomplete fix of CVE-2021-43306

The jQuery Validation Plugin jquery-validation provides drop-in validation for forms. Versions of jquery-validation prior to 1.19.5 are vulnerable to regular expression denial of service ReDoS when an attacker is able to supply arbitrary input to the url2 method. This is due to an incomplete fix...

7.5CVSS7.8AI score0.02026EPSS
Exploits1References3
CVE
CVE
added 2022/07/14 7:30 p.m.224 views

CVE-2022-31147

The vulnerability CVE-2022-31147 affects the jquery-validation plugin (npm/package jquery-validation). Versions prior to 1.19.5 are vulnerable to a Regular Expression Denial of Service (ReDoS) in the url2 method, due to an incomplete fix for CVE-2021-43306. Impact is a potential DoS; no exploit d...

7.5CVSS6.5AI score0.02026EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2022/07/05 10:56 p.m.39 views

GHSA-FFMH-X56J-9RC3 jquery-validation Regular Expression Denial of Service due to arbitrary input to url2 method

Summary Incomplete fix of CVE-2021-43306: An exponential ReDoS Regular Expression Denial of Service can be triggered in the jquery-validation npm package, when an attacker is able to supply arbitrary input to the url2 method...

7.5CVSS7.4AI score0.02026EPSS
Exploits1References5
Github Security Blog
Github Security Blog
added 2022/07/05 10:56 p.m.238 views

jquery-validation Regular Expression Denial of Service due to arbitrary input to url2 method

Summary Incomplete fix of CVE-2021-43306: An exponential ReDoS Regular Expression Denial of Service can be triggered in the jquery-validation npm package, when an attacker is able to supply arbitrary input to the url2 method...

7.5CVSS7.3AI score0.02026EPSS
Exploits2References5Affected Software1
vulnersOsv
vulnersOsv
added 2022/06/03 12:0 a.m.6 views

@dmrvos/infrajs (>=0.0.4 <=0.0.8), @marjose/jstoolkit (>=0.0.2 <=1.0.0-beta) +10 more potentially affected by CVE-2021-43306 via jquery-validation (>=1.14.0 <=1.19.1)

jquery-validation NPM version =1.14.0, =0.0.4, =0.0.2, =0.2.2, =3.0.0, =0.11.28, =0.0.8, =1.4.0, =1.0.0, =3.0.0-prerelease.20170216T120000Z, =1.0.0, =1.0.6 - webpack-symfony-builder =1.0.0 Source cves: CVE-2021-43306 Source advisory: OSV:GHSA-J9M2-H2PV-WVPH...

7.5CVSS7.1AI score0.01327EPSS
Exploits1
NVD
NVD
added 2022/06/02 2:15 p.m.26 views

CVE-2021-43306

An exponential ReDoS Regular Expression Denial of Service can be triggered in the jquery-validation npm package, when an attacker is able to supply arbitrary input to the url2 method...

7.5CVSS0.01327EPSS
Exploits1References1
OSV
OSV
added 2022/06/02 2:15 p.m.13 views

CVE-2021-43306

An exponential ReDoS Regular Expression Denial of Service can be triggered in the jquery-validation npm package, when an attacker is able to supply arbitrary input to the url2 method...

7.5CVSS7.5AI score
Exploits0References1
UbuntuCve
UbuntuCve
added 2022/06/02 2:15 p.m.36 views

CVE-2021-43306

An exponential ReDoS Regular Expression Denial of Service can be triggered in the jquery-validation npm package, when an attacker is able to supply arbitrary input to the url2 method...

7.5CVSS7.2AI score0.01327EPSS
Exploits1References3
Cvelist
Cvelist
added 2022/06/01 4:47 p.m.67 views

CVE-2021-43306 Exponential ReDoS in jquery-validation

An exponential ReDoS Regular Expression Denial of Service can be triggered in the jquery-validation npm package, when an attacker is able to supply arbitrary input to the url2 method...

5.9CVSS7.8AI score0.01327EPSS
Exploits1References1
CVE
CVE
added 2022/06/01 4:47 p.m.190 views

CVE-2021-43306

The CVE-2021-43306 entry concerns the jQuery Validation Plugin (jquery-validation). The vulnerability is a Regular Expression Denial of Service (ReDoS) triggered when an attacker can supply arbitrary input to the url2 method, due to an incomplete fix for CVE-2021-43306. Affected versions are thos...

7.5CVSS6.4AI score0.01327EPSS
Exploits1References1Affected Software1
Debian CVE
Debian CVE
added 2022/06/01 4:47 p.m.12 views

CVE-2021-43306

An exponential ReDoS Regular Expression Denial of Service can be triggered in the jquery-validation npm package, when an attacker is able to supply arbitrary input to the url2 method...

7.5CVSS7.6AI score0.01327EPSS
Exploits1
Rows per page
Query Builder