1738 matches found
CVE-2025-69873
ajv Another JSON Schema Validator before 8.18.0 is vulnerable to Regular Expression Denial of Service ReDoS when the $data option is enabled. The pattern keyword accepts runtime data via JSON Pointer syntax $data reference, which is passed directly to the JavaScript RegExp constructor without...
DEBIAN-CVE-2025-69873
ajv Another JSON Schema Validator before 8.18.0 is vulnerable to Regular Expression Denial of Service ReDoS when the $data option is enabled. The pattern keyword accepts runtime data via JSON Pointer syntax $data reference, which is passed directly to the JavaScript RegExp constructor without...
CVE-2025-69873
ajv Another JSON Schema Validator before 8.18.0 is vulnerable to Regular Expression Denial of Service ReDoS when the $data option is enabled. The pattern keyword accepts runtime data via JSON Pointer syntax $data reference, which is passed directly to the JavaScript RegExp constructor without...
UBUNTU-CVE-2025-69873
ajv Another JSON Schema Validator before 8.18.0 is vulnerable to Regular Expression Denial of Service ReDoS when the $data option is enabled. The pattern keyword accepts runtime data via JSON Pointer syntax $data reference, which is passed directly to the JavaScript RegExp constructor without...
Regular Expression Denial of Service (ReDoS)
Overview org.webjars.npm:ajv is an Another JSON Schema Validator Affected versions of this package are vulnerable to Regular Expression Denial of Service ReDoS due to improper validation of the pattern keyword when combined with $data references. An attacker can cause the application to become...
CVE-2025-69873
ajv Another JSON Schema Validator before 8.18.0 is vulnerable to Regular Expression Denial of Service ReDoS when the $data option is enabled. The pattern keyword accepts runtime data via JSON Pointer syntax $data reference, which is passed directly to the JavaScript RegExp constructor without...
CVE-2025-69873
ajv Another JSON Schema Validator before 8.18.0 is vulnerable to Regular Expression Denial of Service ReDoS when the $data option is enabled. The pattern keyword accepts runtime data via JSON Pointer syntax $data reference, which is passed directly to the JavaScript RegExp constructor without...
Ajv JSON schema validator 安全漏洞
Ajv JSON schema validator is an open-source JSON format verifier developed by Ajv. Versions of Ajv JSON schema validator prior to 8.17.1 contained a security vulnerability. This vulnerability arises from the possibility of a denial-of-service attack due to the use of the $data option, which may...
1-sep-ui (>=0.0.1 <=0.0.2), 5e-quill-editor (=0.0.19) +5563 more potentially affected by CVE-2025-69873 via ajv (>=6.0.0 <=6.12.6)
ajv NPM version =6.0.0, =0.0.1, =1.0.23, =1.0.0, =0.0.2, =1.0.0, =0.0.10, =0.0.3, =1.0.6, =0.4.0, =0.0.1-bate.30, =0.0.1, =0.0.20, =0.0.65 and more Source cves: CVE-2025-69873 Source advisory: SNYK:JS-AJV-15274295...
CVE-2025-68017
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Antideo Antideo Email Validator antideo-email-validator allows Blind SQL Injection.This issue affects Antideo Email Validator: from n/a through = 1.0.10...
CVE-2025-68017
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Antideo Antideo Email Validator antideo-email-validator allows Blind SQL Injection.This issue affects Antideo Email Validator: from n/a through = 1.0.10...
CVE-2025-68017
CVE-2025-68017 affects the WordPress plugin Antideo Email Validator (versions up to 1.0.10). The issue is Blind SQL Injection due to improper neutralization of SQL elements. Public sources indicate the vulnerability is present in Antideo Email Validator
CVE-2025-68017
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Antideo Antideo Email Validator antideo-email-validator allows Blind SQL Injection.This issue affects Antideo Email Validator: from n/a through = 1.0.10...
CVE-2025-68017 WordPress Antideo Email Validator plugin <= 1.0.10 - SQL Injection vulnerability
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Antideo Antideo Email Validator antideo-email-validator allows Blind SQL Injection.This issue affects Antideo Email Validator: from n/a through = 1.0.10...
CVE-2025-68017 WordPress Antideo Email Validator plugin <= 1.0.10 - SQL Injection vulnerability
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Antideo Antideo Email Validator antideo-email-validator allows Blind SQL Injection.This issue affects Antideo Email Validator: from n/a through = 1.0.10...
PT-2026-4060
Name of the Vulnerable Software and Affected Versions Antideo Email Validator versions through 1.0.10 Description A flaw exists in Antideo Email Validator that allows for Blind SQL Injection. This issue is due to improper neutralization of special elements used in an SQL command. Recommendations...
WordPress plugin Antideo Email Validator has a SQL injection vulnerability
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...
MiracleLinux 9 : unbound-1.16.2-3.el9_3.1 (AXSA:2024-7557:02)
The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-7557:02 advisory. bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator CVE-2023-50387 bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resourc...
Atlassian Jira Service Management Data Center and Server 11.2.x < 11.2.1 XSS (JSDSERVER-16461)
The version of Atlassian Jira Service Management Data Center and Server Jira Service Desk running on the remote host is affected by a vulnerability as referenced in the JSDSERVER-16461 advisory. - ActionServlet.java in Apache Struts 1 1.x through 1.3.10 does not properly restrict the Validator...
com.cognifide.aet:jobs (>=2.0.0 <=3.2.2), com.cognifide.aet:w3chtml5validator (>=2.0.0 <=3.2.2) +3 more potentially affected by CVE-2025-15104 via nu.validator:validator (>=15.3.28 <=20.7.2)
nu.validator:validator MAVEN version =15.3.28, =2.0.0, =2.0.0, =1.0, =1.5, =0.0.1, =1.0.0 Source cves: CVE-2025-15104 Source advisory: OSV:GHSA-FCCG-7W3P-W66F...