GHSA-qgmg-gppg-76g5

Suggest an improvement
Source
https://github.com/advisories/GHSA-qgmg-gppg-76g5
Import Source
https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2021/11/GHSA-qgmg-gppg-76g5/GHSA-qgmg-gppg-76g5.json
JSON Data
https://api.osv.dev/v1/vulns/GHSA-qgmg-gppg-76g5
Aliases
Published
2021-11-03T17:34:45Z
Modified
2023-11-08T04:06:20.163617Z
Severity
  • 5.3 (Medium) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVSS Calculator
Summary
Inefficient Regular Expression Complexity in validator.js
Details

validator.js prior to 13.7.0 is vulnerable to Inefficient Regular Expression Complexity

References

Affected packages

npm / validator

Package

Name
validator
View open source insights on deps.dev
Purl
pkg:npm/validator

Affected ranges

Type
SEMVER
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
13.7.0

Ecosystem specific 

{
    "affected_functions": [
        "(validator).rtrim"
    ]
}