GHSA-8FGX-WGVR-PCX8 Zod jsVideoUrlParser vulnerable to ReDoS in util.js

A weakness has been identified in Zod jsVideoUrlParser up to 0.5.1. The impacted element is the function getTime in the library lib/util.js. This manipulation of the argument timestamp causes inefficient regular expression complexity. It is possible to initiate the attack remotely. The exploit ha...

CVE-2026-5986 Zod jsVideoUrlParser util.js getTime redos

A weakness has been identified in Zod jsVideoUrlParser up to 0.5.1. The impacted element is the function getTime in the library lib/util.js. This manipulation of the argument timestamp causes inefficient regular expression complexity. It is possible to initiate the attack remotely. The exploit ha...

EUVD-2022-7057

Malicious code in bioql PyPI...

Malicious code in ethers-util.js (npm)

The package ethers-util.js was found to contain malicious code...

MAL-2025-19893 Malicious code in ethers-util.js (npm)

The package ethers-util.js was found to contain malicious code...

Prototype Pollution

protobufjs is vulnerable to Prototype Pollution. The vulnerability exists in the setProperty function of util.js, which allows an attacker to inject and modify malicious properties such as proto, resulting in prototype pollution...

Cross-site Scripting (XSS)

esdoc-publish-html-plugin is vulnerable to Cross-site Scripting XSS. The vulnerability exists because the markdown function in util.js does not properly remove HTML comments, allowing an attacker to inject and execute malicious HTML content such as through the tag parameter...

Prototype Pollution

gh-pages is vulnerable to prototype pollution. The vulnerability exists because of lack of validations in partial variable in util.js which allows an attacker to inject malicious characteristics to add new values to a javascript application object prototype,overwriting or contaminating the base...

GHSA-8MMM-9V2Q-X3F9 tschaub gh-pages vulnerable to prototype pollution

Prototype pollution vulnerability in tschaub gh-pages via the partial variable in util.js...

tschaub gh-pages vulnerable to prototype pollution

Prototype pollution vulnerability in tschaub gh-pages via the partial variable in util.js...

CVE-2022-37611

Prototype pollution vulnerability in tschaub gh-pages 3.1.0 via the partial variable in util.js...

CVE-2022-37611

Prototype pollution vulnerability in tschaub gh-pages 3.1.0 via the partial variable in util.js...

Code injection

Prototype pollution vulnerability in tschaub gh-pages 3.1.0 via the partial variable in util.js...

gh-pages 安全漏洞

gh-pages is a general-purpose task for Tim Schaub's personal developer to publish files to the gh-pages branch on GitHub. A security vulnerability exists in gh-pages version 3.1.0, which stems from a prototype contamination vulnerability via some variables in util.js...

PT-2022-24026 · Unknown · Tschaub Gh-Pages

Name of the Vulnerable Software and Affected Versions: tschaub gh-pages version 3.1.0 Description: The issue is related to a prototype pollution vulnerability. It is exploited via the partial variable in util.js. Recommendations: For tschaub gh-pages version 3.1.0, consider restricting access to...

CVE-2022-37611

Prototype pollution vulnerability in tschaub gh-pages 3.1.0 via the partial variable in util.js...

CVE-2022-37611

Prototype pollution vulnerability in tschaub gh-pages 3.1.0 via the partial variable in util.js...

Regular Expression Denial Of Service (ReDoS)

jsoneditor is vulnerable to regular expression denial of service. The use of inefficient regex pattern for trimmedValue in getInnerText function of util.js allows a malicious user to crash the application by providing a malicious input...

Cross-Site Scripting (XSS)

vue-i18n-extensions is vulnerable to cross-site scripting XSS attacks. The vulnerability exists in util.js of vue-i18n-extensions whereby a remote attacker is able to inject arbitrary script into a victim's browser to steal session tokens or perform unwanted actions on behalf of the user...