exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 4

CVE-2025-56200

4 месяца назад

A URL validation bypass vulnerability exists in validator.js through version 13.15.15. The isURL() function uses '://' as a delimiter to parse protocols, while browsers use ':' as the delimiter. This parsing difference allows attackers to bypass protocol and domain validation by crafting URLs leading to XSS and Open Redirect attacks.

CVSS3: 6.1

EPSS: Низкий

CVE-2025-56200

4 месяца назад

A URL validation bypass vulnerability exists in validator.js through version 13.15.15. The isURL() function uses '://' as a delimiter to parse protocols, while browsers use ':' as the delimiter. This parsing difference allows attackers to bypass protocol and domain validation by crafting URLs leading to XSS and Open Redirect attacks.

CVSS3: 6.1

EPSS: Низкий

CVE-2025-56200

4 месяца назад

A URL validation bypass vulnerability exists in validator.js through v ...

CVSS3: 6.1

EPSS: Низкий

GHSA-9965-vmph-33xx

4 месяца назад

validator.js has a URL validation bypass vulnerability in its isURL function

CVSS3: 6.1

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2025-56200 A URL validation bypass vulnerability exists in validator.js through version 13.15.15. The isURL() function uses '://' as a delimiter to parse protocols, while browsers use ':' as the delimiter. This parsing difference allows attackers to bypass protocol and domain validation by crafting URLs leading to XSS and Open Redirect attacks.	CVSS3: 6.1	0% Низкий	4 месяца назад
CVE-2025-56200 A URL validation bypass vulnerability exists in validator.js through version 13.15.15. The isURL() function uses '://' as a delimiter to parse protocols, while browsers use ':' as the delimiter. This parsing difference allows attackers to bypass protocol and domain validation by crafting URLs leading to XSS and Open Redirect attacks.	CVSS3: 6.1	0% Низкий	4 месяца назад
CVE-2025-56200 A URL validation bypass vulnerability exists in validator.js through v ...	CVSS3: 6.1	0% Низкий	4 месяца назад
GHSA-9965-vmph-33xx validator.js has a URL validation bypass vulnerability in its isURL function	CVSS3: 6.1	0% Низкий	4 месяца назад

Уязвимостей на страницу