30 matches found
CVE-2020-26309 GHSL-2020-303: Regular Expression Denial of Service (ReDoS) in nope-validator
Validate.js provides a declarative way of validating javascript objects. Versions 0.11.3 and prior contain one or more regular expressions that are vulnerable to Regular Expression Denial of Service ReDoS. As of time of publication, it is unknown if any patches are available...
CVE-2020-26308 GHSL-2020-302: Regular Expression Denial of Service (ReDoS) in validate.js
Validate.js provides a declarative way of validating javascript objects. Versions 0.13.1 and prior contain one or more regular expressions that are vulnerable to Regular Expression Denial of Service ReDoS. As of time of publication, no known patches are available...
CVE-2020-26308 GHSL-2020-302: Regular Expression Denial of Service (ReDoS) in validate.js
Validate.js provides a declarative way of validating javascript objects. Versions 0.13.1 and prior contain one or more regular expressions that are vulnerable to Regular Expression Denial of Service ReDoS. As of time of publication, no known patches are available...
validate.js 安全漏洞
validate.js is a declarative validation library written in javascript by the individual developer Nicklas Ansman. A security vulnerability exists in validate.js version 0.11.3 and prior versions, which stems from the presence of a regular expression denial of service vulnerability...
validate.js 安全漏洞
validate.js is a declarative validation library written in javascript by the individual developer Nicklas Ansman. A security vulnerability exists in validate.js that stems from the presence of a regular expression denial of service vulnerability...
PT-2024-10800 · Unknown · Validate.Js
Name of the Vulnerable Software and Affected Versions: Validate.js versions prior to the version released after 30 November 2020 Description: The issue concerns Regular Expression Denial of Service ReDoS due to vulnerable regular expressions in Validate.js. As of the time of publication, it is...
PT-2024-10798
Name of the Vulnerable Software and Affected Versions Validate.js versions 0.13.1 and prior Description Validate.js provides a declarative way of validating javascript objects. The issue concerns one or more regular expressions that are vulnerable to Regular Expression Denial of Service ReDoS. No...
PT-2024-10799 · Unknown +1 · Validate.Js +1
Name of the Vulnerable Software and Affected Versions: Validate.js versions 0.11.3 and prior Nope versions 0.11.3 and prior Description: The issue concerns Regular Expression Denial of Service ReDoS due to one or more vulnerable regular expressions. Recommendations: For Validate.js versions 0.11....
validate.js 安全漏洞
validate.js is a declarative validation library written in javascript by the individual developer Nicklas Ansman. A security vulnerability exists in validate.js version 0.13.1 and prior versions, which stems from the presence of a regular expression denial of service vulnerability...
Prototype Pollution
json-schema is vulnerable to prototype pollution. An attacker can inject properties into existing construct prototypes via the checkObj function in validate.js and modify attributes such as proto. and constructor...