Acunetix DAST powers runtime capabilities for Invicti’s complete AppSec platform. Visit Invicti for more.

WEB APPLICATION VULNERABILITIES SCA (Software Composition Analysis)

CVE-2016-10521 Vulnerability in npm package jshamcrest

Description

jshamcrest is vulnerable to regular expression denial of service (ReDoS) when certain types of user input is passed in to the emailAddress validator.

Remediation

References

https://nodesecurity.io/advisories/53

Related Vulnerabilities

CVE-2021-23381 Vulnerability in npm package killing

CVE-2016-4432 Vulnerability in maven package org.apache.qpid:qpid-broker-plugins-amqp-0-10-protocol

CVE-2016-5018 Vulnerability in maven package tomcat:jasper

CVE-2021-23378 Vulnerability in npm package picotts

CVE-2019-1003050 Vulnerability in maven package org.jenkins-ci.main:jenkins-core

Severity

High

Classification

CWE-20 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Tags

Broken Link