Critical severityNVD Advisory· Published Jan 22, 2020· Updated Aug 4, 2024
CVE-2019-10781
CVE-2019-10781
Description
In schema-inspector before 1.6.9, a maliciously crafted JavaScript object can bypass the sanitize() and the validate() function used within schema-inspector.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
schema-inspectornpm | < 1.6.9 | 1.6.9 |
Affected products
2- Snyk/schema-inspectorv5Range: All versions prior to version 1.6.9
Patches
Vulnerability mechanics
References
4- github.com/advisories/GHSA-r24h-634p-m72xghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2019-10781ghsaADVISORY
- github.com/Atinux/schema-inspector/commit/345a7b2eed11bb6128421150d65f4f83fdbb737dghsax_refsource_CONFIRMWEB
- snyk.io/vuln/SNYK-JS-SCHEMAINSPECTOR-536970ghsax_refsource_MISCWEB
News mentions
0No linked articles in our index yet.