Cxc6f5432f-0440 @ Npm-is-my-json-valid-2.15.0 #107

CMaheshBL · 2022-05-06T07:26:18Z

Vulnerable Package issue exists @ Npm-is-my-json-valid-2.15.0 in branch master

is-my-json-valid is vulnerable to Regular Expression Denial of Service (ReDoS) via the email validation function.

Namespace: CMaheshBL
Repository: NodeGoat
Repository Url: https://github.com/CMaheshBL/NodeGoat
CxAST-Project: CMaheshBL/NodeGoat
CxAST platform scan: d7c1c0af-6b2d-455e-8753-a6b87dbf733d
Branch: master
Application: NodeGoat
Severity: HIGH
State: NOT_IGNORED
Status: RECURRENT
CWE: CWE-400

Addition Info
Attack vector: NETWORK
Attack complexity: LOW
Confidentiality impact: NONE
Availability impact: HIGH
Remediation Upgrade Recommendation: 2.17.2

References
Advisory
Pull request
Commit

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Cxc6f5432f-0440 @ Npm-is-my-json-valid-2.15.0 #107

Cxc6f5432f-0440 @ Npm-is-my-json-valid-2.15.0 #107

CMaheshBL commented May 6, 2022 •

edited

Loading

Cxc6f5432f-0440 @ Npm-is-my-json-valid-2.15.0 #107

Cxc6f5432f-0440 @ Npm-is-my-json-valid-2.15.0 #107

Comments

CMaheshBL commented May 6, 2022 • edited Loading

CMaheshBL commented May 6, 2022 •

edited

Loading