Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
Validator ProjectValidator

3 matches found

CVE
CVEadded 2021/11/02 7:5 a.m.145 views

CVE-2021-3765

CVE-2021-3765 (validator.js) is described in the provided materials as a regular expression denial of service (ReDoS) vulnerability. The technical detail mentioned is a vulnerability in validator.js related to inefficient regular expression complexity, specifically a ReDoS condition triggered by ...

7.5CVSS6.1AI score0.00058EPSS
CVE
CVEadded 2025/09/30 12:0 a.m.16 views

CVE-2025-56200

CVE-2025-56200 : Validator.js contains a URL validation bypass through version 13.15.15. The isURL() function splits on '://', but browsers use ':'; this allows crafting URLs that bypass protocol/domain checks and may enable XSS or open redirects. Connected sources indicate a fix is available in ...

6.1CVSS6AI score0.00054EPSS
CVE
CVEadded 2025/11/27 5:0 a.m.15 views

CVE-2025-12758

CVE-2025-12758—Validator.js isLength() Unicode variation selector bypass . Multiple IBM advisories reference affected product lines (e.g., IBM App Connect Enterprise, QRadar) where validator versions earlier than 13.15.22 are vulnerable due to incomplete filtering of Unicode variation selectors i...

8.7CVSS6.7AI score0.00112EPSS