VYPR
Vendor

Jquery Validation

Products
1
CVEs
4
Across products
4
Status
Private

Products

1

Recent CVEs

4
  • CVE-2022-31147HigJul 14, 2022
    risk 0.42cvss 7.5epss 0.02

    The jQuery Validation Plugin (jquery-validation) provides drop-in validation for forms. Versions of jquery-validation prior to 1.19.5 are vulnerable to regular expression denial of service (ReDoS) when an attacker is able to supply arbitrary input to the url2 method. This is due…

  • CVE-2025-3573MedApr 15, 2025
    risk 0.33cvss 6.1epss 0.00

    Versions of the package jquery-validation before 1.20.0 are vulnerable to Cross-site Scripting (XSS) in the showLabel() function, which may take input from a user-controlled placeholder value. This value will populate a message via $.validator.messages in a user localizable…

  • CVE-2021-43306MedJun 2, 2022
    risk 0.31cvss 5.9epss 0.01

    An exponential ReDoS (Regular Expression Denial of Service) can be triggered in the jquery-validation npm package, when an attacker is able to supply arbitrary input to the url2 method

  • CVE-2021-21252MedJan 13, 2021
    risk 0.28cvss 5.3epss 0.04

    The jQuery Validation Plugin provides drop-in validation for your existing forms. It is published as an npm package "jquery-validation". jquery-validation before version 1.19.3 contains one or more regular expressions that are vulnerable to ReDoS (Regular Expression Denial of…