Lucene search
K

30 matches found

Cvelist
Cvelist
added 2024/10/26 8:26 p.m.19 views

CVE-2020-26309 GHSL-2020-303: Regular Expression Denial of Service (ReDoS) in nope-validator

Validate.js provides a declarative way of validating javascript objects. Versions 0.11.3 and prior contain one or more regular expressions that are vulnerable to Regular Expression Denial of Service ReDoS. As of time of publication, it is unknown if any patches are available...

8.7CVSS0.00435EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/10/26 8:26 p.m.5 views

CVE-2020-26308 GHSL-2020-302: Regular Expression Denial of Service (ReDoS) in validate.js

Validate.js provides a declarative way of validating javascript objects. Versions 0.13.1 and prior contain one or more regular expressions that are vulnerable to Regular Expression Denial of Service ReDoS. As of time of publication, no known patches are available...

8.7CVSS6.9AI score0.00493EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/10/26 8:26 p.m.14 views

CVE-2020-26308 GHSL-2020-302: Regular Expression Denial of Service (ReDoS) in validate.js

Validate.js provides a declarative way of validating javascript objects. Versions 0.13.1 and prior contain one or more regular expressions that are vulnerable to Regular Expression Denial of Service ReDoS. As of time of publication, no known patches are available...

8.7CVSS0.00493EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/10/26 12:0 a.m.2 views

validate.js 安全漏洞

validate.js is a declarative validation library written in javascript by the individual developer Nicklas Ansman. A security vulnerability exists in validate.js version 0.11.3 and prior versions, which stems from the presence of a regular expression denial of service vulnerability...

8.7CVSS6.5AI score0.00435EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/10/26 12:0 a.m.3 views

validate.js 安全漏洞

validate.js is a declarative validation library written in javascript by the individual developer Nicklas Ansman. A security vulnerability exists in validate.js that stems from the presence of a regular expression denial of service vulnerability...

8.7CVSS6.7AI score0.00389EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/10/26 12:0 a.m.4 views

PT-2024-10800 · Unknown · Validate.Js

Name of the Vulnerable Software and Affected Versions: Validate.js versions prior to the version released after 30 November 2020 Description: The issue concerns Regular Expression Denial of Service ReDoS due to vulnerable regular expressions in Validate.js. As of the time of publication, it is...

8.7CVSS6.9AI score0.00389EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2024/10/26 12:0 a.m.3 views

PT-2024-10798

Name of the Vulnerable Software and Affected Versions Validate.js versions 0.13.1 and prior Description Validate.js provides a declarative way of validating javascript objects. The issue concerns one or more regular expressions that are vulnerable to Regular Expression Denial of Service ReDoS. No...

8.7CVSS6.4AI score0.00493EPSS
Exploits1References8
Positive Technologies
Positive Technologies
added 2024/10/26 12:0 a.m.6 views

PT-2024-10799 · Unknown +1 · Validate.Js +1

Name of the Vulnerable Software and Affected Versions: Validate.js versions 0.11.3 and prior Nope versions 0.11.3 and prior Description: The issue concerns Regular Expression Denial of Service ReDoS due to one or more vulnerable regular expressions. Recommendations: For Validate.js versions 0.11....

8.7CVSS7AI score0.00435EPSS
Exploits0References8
CNNVD
CNNVD
added 2024/10/26 12:0 a.m.3 views

validate.js 安全漏洞

validate.js is a declarative validation library written in javascript by the individual developer Nicklas Ansman. A security vulnerability exists in validate.js version 0.13.1 and prior versions, which stems from the presence of a regular expression denial of service vulnerability...

8.7CVSS6.5AI score0.00493EPSS
Exploits1References2
Veracode
Veracode
added 2021/11/15 4:42 a.m.54 views

Prototype Pollution

json-schema is vulnerable to prototype pollution. An attacker can inject properties into existing construct prototypes via the checkObj function in validate.js and modify attributes such as proto. and constructor...

9.8CVSS4.5AI score0.03563EPSS
Exploits1References5Affected Software5
Rows per page
Query Builder