CVE-2014-9772

Опубликовано: 23 янв. 2017

Источник: debian

EPSS Низкий

Описание

The validator package before 2.0.0 for Node.js allows remote attackers to bypass the cross-site scripting (XSS) filter via hex-encoded characters.

Пакет	Статус	Версия исправления	Релиз	Тип
validator.js	not-affected			package

EPSS

Процентиль: 69%

0.00602

Низкий

CVE-2014-9772

CVSS3: 6.1

ubuntu

почти 9 лет назад

The validator package before 2.0.0 for Node.js allows remote attackers to bypass the cross-site scripting (XSS) filter via hex-encoded characters.

CVE-2014-9772

CVSS3: 6.1

nvd

почти 9 лет назад

The validator package before 2.0.0 for Node.js allows remote attackers to bypass the cross-site scripting (XSS) filter via hex-encoded characters.

GHSA-79mx-88w7-8f7q

CVSS3: 6.1

github

почти 7 лет назад

XSS Filter Bypass via Encoded URL in validator

EPSS

Процентиль: 69%

0.00602

Низкий