Fedora: Security Advisory for golang-github-envoyproxy-protoc-gen-validate (FEDORA-2022-ea8f4e232d)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora: Security Advisory for golang-github-envoyproxy-protoc-gen-validate (FEDORA-2022-fae3ecee19)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

[SECURITY] Fedora 36 Update: golang-github-envoyproxy-protoc-gen-validate-0.4.1-6.fc36

Protoc plugin to generate polyglot message validators...

PT-2022-22340 · Jenkins · Jenkins Matrix Reloaded Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Matrix Reloaded Plugin versions 1.1.3 and earlier Description: A cross-site request forgery CSRF vulnerability allows attackers to rebuild previous matrix builds. This issue arises because the plugin does not require POST requests for...

VulnCheck KEV: CVE-2020-26879

Ruckus vRioT through 1.5.1.0.21 has an API backdoor that is hardcoded into validatetoken.py. An unauthenticated attacker can interact with the service API by using a backdoor value as the Authorization header...

Regular Expression Denial Of Service (ReDoS)

validate-color is vulnerable to regular expression denial of service ReDoS attacks. A remote attacker is able to cause denial of service conditions via injecting crafted invalid rgba strings through validateHTMLColorRgb function...

CVE-2021-40893

A Regular Expression Denial of Service ReDOS vulnerability was discovered in validate-data v0.1.1 when validating crafted invalid emails...

Denial of service

A Regular Expression Denial of Service ReDOS vulnerability was discovered in validate-data v0.1.1 when validating crafted invalid emails...

CVE-2021-40893

A Regular Expression Denial of Service ReDOS vulnerability was discovered in validate-data v0.1.1 when validating crafted invalid emails...

CVE-2021-40893

CVE-2021-40893 describes a ReDOS vulnerability in the Node.js library validate-data v0.1.1 triggered while validating crafted invalid emails. Root cause: improper handling during email validation leads to excessive backtracking. Impact: potential Denial of Service. Affected component: validate-da...

CVE-2021-40892

A Regular Expression Denial of Service ReDOS vulnerability was discovered in validate-color v2.1.0 when handling crafted invalid rgba strings...

CVE-2021-40892

A Regular Expression Denial of Service ReDOS vulnerability was discovered in validate-color v2.1.0 when handling crafted invalid rgba strings...

Denial of service

A Regular Expression Denial of Service ReDOS vulnerability was discovered in validate-color v2.1.0 when handling crafted invalid rgba strings...

CVE-2021-40892

CVE-2021-40892 affects validate-color version 2.1.0. A Regular Expression Denial of Service (ReDoS) occurs when handling crafted invalid rgb(a) strings, attributed to the validateHTMLColorRgb pathway. Impact described as denial of service; no explicit exploit details beyond input crafting. No con...

CVE-2021-40892

A Regular Expression Denial of Service ReDOS vulnerability was discovered in validate-color v2.1.0 when handling crafted invalid rgba strings...

PT-2022-11320 · Unknown · Validate-Color

Name of the Vulnerable Software and Affected Versions: validate-color version 2.1.0 Description: A Regular Expression Denial of Service ReDOS issue was found in the handling of crafted invalid rgba strings. Recommendations: For version 2.1.0, at the moment, there is no information about a newer...

validate-data 安全漏洞

validate-data is a NodeJs backend library by Anoop P R Individual Developer. It is used to validate data according to the provided rules. A denial of service vulnerability exists in validate-data version v0.1.1, which stems from not properly handling incoming error messages and can be exploited b...

validate-color 安全漏洞

validate-color is a Norwegian Wallace Sidhrée personal developer for validating HTML colors. A denial of service vulnerability exists in validate-color version v2.1.0, which can be exploited to cause a Regular Expression Denial of Service ReDOS by an attacker who fails to properly handle a crafte...

PT-2022-11321 · Unknown · Validate-Data

Name of the Vulnerable Software and Affected Versions: validate-data version 0.1.1 Description: A Regular Expression Denial of Service ReDOS issue was found in the validation of crafted invalid emails. This occurs when the software attempts to validate specially crafted email addresses, leading t...

Malicious code in wm-grunt-module-validate (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0144eb5a5379973adb84fce29202e3214f1bb5b65e7862c5865441b7b371d852 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...