Description
In schema-inspector before 1.6.9, a maliciously crafted JavaScript object can bypass the `sanitize()` and the `validate()` function used within schema-inspector.
Remediation
References
https://github.com/Atinux/schema-inspector/commit/345a7b2eed11bb6128421150d65f4f83fdbb737d
https://snyk.io/vuln/SNYK-JS-SCHEMAINSPECTOR-536970
Related Vulnerabilities
CVE-2023-2507 Vulnerability in npm package clevertap-cordova
CVE-2022-36095 Vulnerability in maven package org.xwiki.platform:xwiki-platform-web-templates
CVE-2020-28425 Vulnerability in npm package curljs
CVE-2020-7226 Vulnerability in maven package org.cryptacular:cryptacular
CVE-2019-14862 Vulnerability in maven package li.rudin.mavenjs:knockout