CVE-2014-9772

Опубликовано: 23 янв. 2017

Источник: debian

Описание

The validator package before 2.0.0 for Node.js allows remote attackers to bypass the cross-site scripting (XSS) filter via hex-encoded characters.

Пакет	Статус	Версия исправления	Релиз	Тип
validator.js	not-affected			package

CVE-2014-9772

CVSS3: 6.1

ubuntu

около 9 лет назад

The validator package before 2.0.0 for Node.js allows remote attackers to bypass the cross-site scripting (XSS) filter via hex-encoded characters.

CVE-2014-9772

CVSS3: 6.1

nvd

около 9 лет назад

The validator package before 2.0.0 for Node.js allows remote attackers to bypass the cross-site scripting (XSS) filter via hex-encoded characters.

GHSA-79mx-88w7-8f7q

CVSS3: 6.1

github

около 7 лет назад

XSS Filter Bypass via Encoded URL in validator