Description
An exponential ReDoS (Regular Expression Denial of Service) can be triggered in the jquery-validation npm package, when an attacker is able to supply arbitrary input to the url2 method
Remediation
References
https://research.jfrog.com/vulnerabilities/jquery-validation-redos-xray-211348/
Related Vulnerabilities
CVE-2021-28163 Vulnerability in maven package org.eclipse.jetty:jetty-deploy
CVE-2023-45885 Vulnerability in npm package openmct
CVE-2022-45398 Vulnerability in maven package org.zeroturnaround:cluster-stats
CVE-2023-37954 Vulnerability in maven package com.sonyericsson.hudson.plugins.rebuild:rebuild
CVE-2022-24377 Vulnerability in npm package cycle-import-check