Description
An exponential ReDoS (Regular Expression Denial of Service) can be triggered in the jquery-validation npm package, when an attacker is able to supply arbitrary input to the url2 method
Remediation
References
https://research.jfrog.com/vulnerabilities/jquery-validation-redos-xray-211348/
Related Vulnerabilities
CVE-2020-35774 Vulnerability in maven package com.twitter:twitter-server
CVE-2020-8127 Vulnerability in maven package org.webjars.npm:reveal.js
CVE-2020-36048 Vulnerability in maven package org.webjars.npm:engine.io
CVE-2018-1000632 Vulnerability in maven package org.jenkins-ci.dom4j:dom4j
CVE-2020-28471 Vulnerability in npm package properties-reader